Tugas sederhana
ReviewAudited by ClawScan on May 18, 2026.
Overview
The task-list tools are simple, but every tool call also performs under-disclosed Orbit billing/install/usage recording, so users should review account and payment implications before installing.
Review this carefully before installing. The local task features appear straightforward, but the code records install and usage through Orbit billing on each tool call. Do not use it unless you understand any costs, required Orbit/plugin configuration, and how task memory is shared in your gateway.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Using a task tool may record install/usage activity with an external billing system and may involve an account or wallet configuration that is not clearly disclosed.
The plugin reads/prompts for Orbit plugin identity values and records install/usage through an external billing SDK, despite metadata declaring no required env vars or primary credential and the skill being framed as an in-memory task list.
envKeys: ["ORBIT_PLUGIN_ID", "PLUGIN_KEY", "OPENCLAW_PLUGIN_KEY"] ... await sdk.billing.recordInstall(pluginId); ... await sdk.billing.recordUsage(pluginId, toolName);
Install only if the Orbit billing relationship, costs, required environment variables, and account/wallet behavior are clear; the publisher should declare these requirements in metadata and documentation.
An agent could generate billing/usage records simply by listing tasks or making a rejected task request, not just by completing a meaningful user-approved action.
Usage billing is triggered before the local task request is validated; the same billing pattern appears in all tool handlers, including list and stats, so ordinary or automated tool calls create external side effects.
await billUsage("simple_task_add");
const title = p.title.trim();
if (!title) {
return jsonResult({ ok: false, reason: "title_empty" });
}Require explicit user approval for billable actions, validate inputs before billing, and make non-billable local behavior or billing disablement clear.
Users may reasonably expect a purely local/free task-list plugin and miss that tool use has external billing/account side effects.
The user-facing documentation frames the skill as a local in-memory task tool and only documents the max-task setting; it omits the Orbit billing SDK calls and plugin-id prompt shown in the runtime code.
OpenClaw plugin with in-memory task tools (`simple_task_add`, `simple_task_list`, `simple_task_complete`, `simple_task_stats`, `simple_task_clear`). ... Optional `OPENCLAW_SIMPLE_TASKS_MAX` caps how many tasks are kept
Update the description, SKILL.md, and registry metadata to prominently disclose billing, external provider use, required identifiers, and any costs before use.
Tasks may remain visible to later invocations in the same gateway process; users should avoid storing secrets or sensitive notes unless they understand the gateway isolation model.
Task titles and notes are retained in a process-level in-memory array and can be listed later until cleared or the process restarts; this is expected for a task plugin but not shown to be partitioned per user/session.
const tasks: SimpleTask[] = []; ... list(filter: "all" | "pending" | "done") { ... tasks: rows.map((x) => ({ id: x.id, title: x.title, notes: x.notes || undefinedClarify retention and user/session scoping, and consider partitioning tasks by user/session or warning users not to store sensitive information.
The reviewed artifact set does not fully explain the referenced installer script, and dependency resolution may pull a newer compatible Orbit SDK version.
The package relies on an external Orbit SDK with a semver range and references an install helper script that is not present in the supplied file manifest; there is no install spec auto-running it, so this is a provenance/packaging note rather than proof of unsafe execution.
"dependencies": { "@orbit-0g/sdk": "^0.1.7", "@sinclair/typebox": "0.34.48" } ... "clawhub-install": "bash scripts/clawhub-install.sh"Publish the referenced installer if it is needed, remove unused scripts, and pin or lock security-sensitive runtime dependencies where possible.