ClawHub

Reading Notes Skill

v1.0.0

Expand reading insights into detailed notes using local templates only. SAFE VERSION: No external API calls, no filesystem access, no secrets required.

0· 331·2 current·2 all-time
byhaidong@harrylabsj
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (expand reading insights into notes) match the code and SKILL.md. The handlers, templates, and helper functions implement exactly that functionality and only require the OpenClaw SDK dependency which is appropriate for an OpenClaw skill.
Instruction Scope
SKILL.md claims 'no external API calls, no filesystem access, no secrets' and the source (src/index.ts and compiled dist/index.js) contains only pure in-memory string/template processing. There are no references to fs, http(s), process.env, child_process, or other system resources.
Install Mechanism
There is no install spec in registry metadata (instruction-only style), but full source and a compiled dist file are included in the package. No downloads or extract operations are present. Development/build scripts will write files during build, which is normal for package authors but not a runtime install concern.
Credentials
The skill declares no required environment variables, no config paths, and the code does not read process.env or other credentials. The single dependency is 'openclaw', which is expected for integration.
Persistence & Privilege
Skill does not request elevated persistence (always:false). It does not modify other skills or system-wide configuration; setup/teardown only log messages. Autonomous invocation is allowed (platform default) but not combined with any broad privileges.
Assessment
This skill appears to do what it claims: local template-based note expansion with no filesystem, network, or secret access. Before installing, consider: 1) verify the OpenClaw runtime sandboxing/policy on your system (to ensure skills can't access files/network unexpectedly); 2) confirm you trust the package author or the registry entry (homepage/source are listed in package.json as a GitHub repo — you can inspect that repo to confirm); 3) note that future updates could change behavior, so review changes in updates; and 4) if you require stronger isolation, run the skill in an environment that restricts network and filesystem access. Overall there are no red flags in the provided code and docs.

Like a lobster shell, security has layers — review code before you run it.

latestvk977s45p91mf1ewmrrd3e3j0w182jntz

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

SKILL.md

Reading Notes Skill (Safe Version)

Expand reading insights into detailed notes using local templates only.

🔒 Security Features

  • No External API Calls: All processing happens locally, no data sent to external services
  • No Filesystem Access: Does not read or write to your filesystem
  • No Secrets Required: No API keys, tokens, or credentials needed
  • Privacy First: Your reading insights never leave your local environment

Features

  • 📝 Insight Expansion: Expand short reading insights into detailed notes
  • 🔒 Local Processing: All templates processed locally with no external dependencies
  • 📋 Multiple Formats: Brief, detailed, and comprehensive note options
  • 💡 Related Concepts: Get suggested related learning concepts
  • Note Prompts: Generate thoughtful prompts for deeper reflection

Commands

  • /reading-notes [insight] - Expand a reading insight into detailed notes
  • /reading-brief [insight] - Generate a brief reading note
  • /reading-related [insight] - Get related concepts and note prompts
  • /reading-prompts [insight] - Get note-taking prompts for the insight

Usage Examples

/reading-notes Today I read about deliberate practice and found it very inspiring
/reading-brief The importance of spaced repetition in learning
/reading-related How to build effective learning habits
/reading-prompts Understanding cognitive load theory

Technical Details

  • TypeScript implementation
  • OpenClaw SDK integration
  • Pure Local Processing: No network calls, no file I/O
  • Version: 1.0.0 (Initial Safe Release)

Safety Assurance

This skill has been specifically designed with security as the highest priority:

  1. No External Dependencies: Removed all external API calls
  2. No Filesystem Access: No reading of local notes or files
  3. No Secrets: No environment variables or API keys required
  4. Transparent Processing: All logic visible in source code
  5. Local Templates Only: All content generated from local templates

Installation

clawhub install reading-notes

Requirements

  • Node.js >= 18.0.0
  • OpenClaw >= 2026.3.0

Development

# Clone the repository
git clone https://github.com/harrylabs0913/openclaw-skill-reading-notes.git

# Install dependencies
npm install

# Build the project
npm run build

# Test the skill
npm test

Contributing

Contributions are welcome! Please ensure all code follows the security principles:

  1. No external API calls
  2. No filesystem access
  3. No secrets or environment variables
  4. Pure local template-based processing

Files

7 total
Select a file
Select a file to preview.

Comments

Loading comments…