Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
knowledge is what brings us together
v1.0.0Capture, summarize, and organize knowledge from URLs, YouTube videos, documents, and files. Proactively recall stored knowledge when relevant.
⭐ 0· 403·0 current·0 all-time
by@plc
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill's name and description (capture, summarize, organize, and recall knowledge) align with the actions described in SKILL.md: creating a directory structure, writing raw and summary markdown files, maintaining a small index in agent memory, and optionally initializing a git repo. No unrelated credentials or external services are requested.
Instruction Scope
The runtime instructions direct the agent to read and write files under a resolved knowledge-base path, create directories (mkdir -p via Bash), and update an index in agent memory. They also direct proactive recall (searching the KB when relevant). This scope is expected for a knowledge manager but has these noteworthy aspects: (1) the skill assumes the agent can fetch or extract content from URLs/YouTube/files but does not specify how—behavior depends on the agent's existing web/file connectors; (2) because the path is chosen by the user and then written to, the skill could read/write any files under that path—avoid selecting broad or sensitive directories; (3) proactive recall means stored knowledge can be surfaced in replies without explicit re-confirmation, so users should be aware of what data they allow the skill to store and surface.
Install Mechanism
This is an instruction-only skill with no install spec and no code files. That is the lowest-risk install model: nothing is downloaded or written by an installer. Runtime instructions reference optional use of git if available but do not force installs.
Credentials
The skill requests no environment variables or credentials. It does rely on the agent's persistent memory for storing the KB path and a lightweight index, which is appropriate for the proactive recall feature.
Persistence & Privilege
always:false (normal). The skill stores the chosen KB path and a small index in agent memory and can autonomously search that KB when relevant. That autonomy is expected for a recall-capable skill, but it increases the chance that stored (possibly sensitive) content will be included in responses automatically. The skill may also initialize a git repo and make commits if git is present; it explicitly instructs not to push unless the user configures and requests it.
Assessment
This skill appears to do what it claims, but consider these practical precautions before installing/using it: (1) When first invoked you'll be asked to choose a knowledge-base directory — pick a confined directory (e.g., a dedicated ~/Documents/knowledge/) and never point it at broad system or home directories. (2) Be aware the agent will read/write files under that path and will keep a small index in persistent memory; anything you store can be recalled proactively in replies. (3) The skill may initialize a git repo and commit changes locally; it will not push without your explicit instruction—avoid configuring a remote unless you intend to sync. (4) The SKILL.md doesn't specify how URLs/YouTube/files are fetched; if your agent has web access it may fetch content automatically, so avoid saving items that contain secrets or credentials. (5) If you want tighter control, ask the agent to confirm before saving any captured content or disable proactive recall behavior. Overall this skill is internally coherent with its stated purpose.Like a lobster shell, security has layers — review code before you run it.
brainvk97b3rmtbznyzdbafqpqdmewhx81zy5wknowledgevk97b3rmtbznyzdbafqpqdmewhx81zy5wlatestvk97b3rmtbznyzdbafqpqdmewhx81zy5wsummariesvk97b3rmtbznyzdbafqpqdmewhx81zy5w
License
MIT-0
Free to use, modify, and redistribute. No attribution required.