ClawHub
Back to skill
v1.0.0

smart notes using sqlite3

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:35 AM.

Analysis

This looks like a coherent local memo-management skill, with expected local storage and user-directed import/edit/delete features but no artifact evidence of exfiltration or hidden behavior.

GuidanceThis appears safe to use as a local notes tool. Before installing, be aware that it stores notes in a persistent local SQLite database and can import file contents or delete memo records when asked, so confirm paths and IDs for sensitive or important notes.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
python scripts/memos.py import <文件路径>
python scripts/memos.py delete <ID>
python scripts/memos.py archive <ID>

The documented CLI can read user-selected files into the memo database and mutate memo records by deleting or archiving them.

User impactA wrong file path could import unintended private content, and a wrong memo ID could delete or archive the wrong stored memo.
RecommendationAsk the agent to confirm file paths and memo IDs before import, edit, delete, or archive operations; keep backups if the notes are important.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceMediumStatusNote
metadata
Source: unknown; Homepage: none; Version: 1.0.0

The registry metadata has limited provenance information, and the included package.json reports version 1.2.0, creating a minor version/provenance ambiguity.

User impactThis does not show malicious behavior, but it gives less context for verifying the package origin or exact released version.
RecommendationIf provenance matters, verify the publisher and package contents before installing or relying on the optional dependencies.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityLowConfidenceHighStatusNote
SKILL.md
数据库: `~/.qclaw/workspace/memos/memos.db`

The skill explicitly persists memo and imported-note content in a local SQLite database, making it reusable across later interactions.

User impactPersonal notes, imported documents, contacts, financial notes, or health notes may remain stored locally and searchable later.
RecommendationOnly import content you are comfortable storing in this workspace, and review or remove the database if you no longer want those notes retained.