ClawHub
Back to skill
v1.0.0

OmniFocus

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 4:51 AM.

Analysis

This skill appears to do what it says—manage OmniFocus tasks locally—but users should confirm before letting it change tasks.

GuidanceInstall only if you want Clawdbot to read and manage your OmniFocus tasks. Before allowing changes, ask it to list matching tasks and confirm the exact target, especially for common task names.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
scripts/complete_task.js
if (allTasks[i].name() === taskName && !allTasks[i].completed()) { ... allTasks[i].markComplete(); ... return true; }

The script can mutate persistent OmniFocus data by completing the first matching task name; this is purpose-aligned, and SKILL.md instructs confirmation before modifying tasks.

User impactIf the wrong task name is supplied or duplicate names exist, the agent could complete or update an unintended task.
RecommendationList matching tasks first and explicitly confirm the target before completing or updating any task.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning
SeverityInfoConfidenceHighStatusNote
scripts/search_tasks.js
const note = (task.note() || "").toLowerCase(); ... note: task.note() || ""

Search and list operations include task notes in returned JSON, so private OmniFocus task content can be brought into the agent conversation.

User impactTask names, notes, projects, tags, and due dates may be visible to the agent when listing or searching tasks.
RecommendationAvoid storing highly sensitive secrets in OmniFocus task notes, and review results before sharing or summarizing them elsewhere.