Knowledge Base SOP
Security checks across malware telemetry and agentic risk
Overview
This is a coherent instruction-only wiki maintenance SOP; it has no hidden code or credential use, but it can crawl bookmark links and modify local knowledge-base files.
This skill appears safe to install if you want an agent to help maintain a local personal wiki. Use it on a dedicated KB folder, keep backups or version control, review imported pages before trusting them, and clarify whether raw/bookmarks.html may be modified or should be tracked with a separate processed-state file.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may browse bookmarked or wiki-linked sites, which can expose normal web-request metadata and may load private or internal URLs if they are present in the KB.
The skill directs the agent to make external network requests based on bookmarks and wiki links. This is purpose-aligned for link/bookmark processing, but users should be aware it may visit many URLs.
Headlessly visit each URL to fetch body content ... Weekly scan of all URLs in `wiki/`.
Review bookmark and wiki URL lists before running bulk crawls, and avoid including authenticated, sensitive, or internal-only URLs unless that is intended.
Incorrect, malicious, or low-quality source material could be preserved in the knowledge base and influence later work if not reviewed.
The skill stores summaries from raw documents and web content into a persistent wiki. The verification tag and hallucination guard reduce risk, but untrusted or inaccurate source content can still become future context.
Extract core points ... Generate Markdown cards in `wiki/Bookmarks/` ... All newly ingested wiki pages carry a `[[待验证]]` tag.
Keep the verification tag until a human reviews new pages, and treat imported web content as untrusted source material.
The original bookmark export could be changed, making it harder to preserve an untouched source copy or rerun the pipeline cleanly.
There is an internal workflow inconsistency: the raw directory is described as immutable, but the bookmark pipeline modifies the original raw bookmarks file. This could affect future processing state.
`raw/` — Original, unprocessed materials ... **Never modify directly.** ... Mark processed entries in the original HTML to prevent re-crawl.
Use a sidecar processed-state file or work on a copy of raw/bookmarks.html, and ask for confirmation before modifying original raw inputs.