v1.1.0

Memepickup Wingman

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:47 AM.

Analysis

Review recommended: the skill is transparent about its dating-assistant purpose, but it can send private dating content to remote services and optionally automate swipes/likes/comments through logged-in dating apps.

GuidanceInstall only if you are comfortable sharing dating screenshots, conversations, and preferences with MemePickup/OpenAI-backed processing. Treat auto-swipe as a separate high-risk feature: it can act through your logged-in dating apps, may consume credits, and may violate app terms. If you use it, keep sessions small, supervise actions, and revoke screen/accessibility permissions when finished.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityHighConfidenceHighStatusConcern

references/AUTO-SWIPE.md

Executes the recommended action (swipe, like, comment, skip) ... Moves to the next profile ... Auto-swiping violates the Terms of Service of all dating platforms.

The skill documentation describes automated account actions on dating platforms, including repeated profile actions, and acknowledges platform-ban risk.

User impactA session could create unintended likes, swipes, or comments and may put the user's dating accounts at risk of limits or bans.

RecommendationKeep auto-swipe disabled unless explicitly needed; require clear per-session consent, prefer per-profile confirmation, and understand the dating platform ban risk before enabling it.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

references/OPENCLAW-SETUP.md

OpenClaw must have screen interaction permissions enabled ... The dating app must be installed and logged in ... Screen recording permission ... Accessibility permission

Auto-swipe requires permissions that can read the screen and control interactions inside already logged-in dating apps.

User impactGranting these permissions lets the agent view dating app screens and perform actions through the user's authenticated accounts.

RecommendationGrant screen/accessibility permissions only if you want account automation, revoke them after use, and avoid running auto-swipe on accounts where mistakes would be costly.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityMediumConfidenceHighStatusNote

README.md

Conversation data and screenshots are sent to MemePickup's API for processing ... Profile screenshots are processed by OpenAI Vision

The artifacts disclose that private dating conversations, screenshots, and profile images leave the local agent for remote provider processing.

User impactPrivate chats, profile images, and potentially identifying dating information may be transmitted to external services as part of normal use.

RecommendationOnly submit screenshots or conversations you are comfortable sharing with the service, and review MemePickup's privacy policy before use.

Memory and Context Poisoning

SeverityMediumConfidenceHighStatusNote

examples/preferences.md

Preferences saved to MemePickup cloud (synced across devices)

Dating preferences are stored persistently and reused to score future profiles.

User impactPersonal dating preferences and dealbreakers can persist across sessions and influence later recommendations.

RecommendationReview saved preferences periodically, avoid storing overly sensitive details, and delete or reset preferences if you no longer want them reused.