Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Accountant Priv Assistant
v1.0.0Personal finance assistant for AccountantPriv. Query SQLite databases (Hapoalim, Isracard, Max) to answer financial questions like "מאיזה כרטיס יורד הנטפליקס...
⭐ 0· 24·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (personal finance assistant querying Hapoalim/Isracard/Max SQLite DBs) align with the included scripts and SKILL.md. The code only accesses the listed local DBs and performs expected queries/summaries. No unrelated credentials, binaries, or external services are requested.
Instruction Scope
SKILL.md explicitly instructs running the included scripts to read the SQLite DBs and format results; that is in-scope. Two cautions: (1) the scripts run arbitrary SQL when using query_db.py --sql, which grants broad read access within the reachable databases (this is functional but can expose more data than a user expects), and (2) the scripts use a hardcoded absolute BASE_DIR (/Users/sharontourjeman/accountantpriv/output), so they will only read files under that path unless modified. There are no instructions to read unrelated system files or send data to external endpoints.
Install Mechanism
No install spec — instruction-only plus bundled Python scripts. Nothing is downloaded or executed from remote URLs. That is low-risk from an install-mechanism perspective.
Credentials
The skill requests no environment variables or credentials. The functionality relies solely on local filesystem access to the indicated DB files, which is proportionate to the stated purpose. The only unexpected configuration is the hardcoded user-specific BASE_DIR, which may require adjustment for other users.
Persistence & Privilege
The skill is not always-enabled and does not request elevated privileges. Scripts are read-only in behavior (SQL SELECT, SUM, COUNT) and print output; they do not modify other skills, system configs, or network state. No persistent modifications are performed.
Assessment
This skill appears to do what it says: read local AccountantPriv SQLite DBs and answer finance questions. Before installing or running it, check the following: (1) Confirm the BASE_DIR hardcoded in the scripts (/Users/sharontourjeman/accountantpriv/output) matches where your DB files actually live — otherwise update it to your data path. (2) Be aware query_db.py accepts arbitrary SQL; avoid running queries you don't understand or that could reveal unrelated sensitive data. (3) Review the scripts yourself (they are short and local) and run them in a safe environment or sandbox first. (4) The skill does not send data over the network or require credentials, so the main risk is exposing your local financial DB contents to whatever agent/runtime executes these scripts — ensure you trust that runtime and its policies before allowing the skill to execute commands against your files.Like a lobster shell, security has layers — review code before you run it.
latestvk979ce256kzm04fy7218ypz6td84ewe7
License
MIT-0
Free to use, modify, and redistribute. No attribution required.