Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Linkmind
v1.0.0LinkMind 知识连接引擎 Phase 2 - 本地化知识中枢 CLI 工具,支持 storage adapter 抽象层和 OpenAI-compatible embedding provider。
⭐ 0· 12·0 current·0 all-time
byhaidong@harrylabsj
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The name/description (local knowledge connector with storage adapters and embedding providers) matches the code and SKILL.md. The code implements JSON and SQLite storage adapters, mock and OpenAI-compatible embedding providers, fragment/concept/link building, and a CLI. No unexpected cloud SDKs or unrelated credentials are requested.
Instruction Scope
Runtime instructions and the CLI operate on local files (data/workspace.json, examples/…), perform ingest/query/status/reset, and run tests that invoke the CLI via child_process.execSync (tests/smoke-test.js). The skill will read and write files inside the skill data directory. If you enable the OpenAICompatibleProvider (or pass a baseURL), the skill will POST plaintext to that external endpoint; this is expected given the stated purpose but is the primary external-data flow to be aware of.
Install Mechanism
This is an instruction-only skill with source files included; there is no network-based install step. The bundle does not download arbitrary archives or run remote installers. The only optional native dependency is better-sqlite3 (or sqlite3), which is referenced in code and will only be required/used if you choose the sqlite adapter.
Credentials
The skill declares no required environment variables. This is consistent because embedding use is optional and the OpenAI-compatible provider accepts apiKey/baseURL via constructor/options rather than fixed env vars. Note: if you opt to use the OpenAICompatibleProvider you will need to provide an API key or baseURL (and that will send text to the configured endpoint). The package does not request unrelated secrets or system credentials.
Persistence & Privilege
The skill does not request always:true and is user-invocable only. It stores data under its data/ directory (workspace.json or db.sqlite) and does not modify other skills or system-wide agent configuration. The CLI and adapters only operate within the skill workspace.
Assessment
This package appears to do what it says: it ingests local files, builds fragments/concepts/links, stores them in data/workspace.json (or SQLite), and can call an external embedding API if you configure the OpenAI-compatible provider. Before installing or running: 1) Review the included files (notably data/workspace.json and tests) because the bundle includes a workspace file that contains an absolute local path and the smoke-test script — these may contain sensitive paths or test content from the author. 2) If you use the OpenAICompatibleProvider, be aware that text will be sent to the configured baseURL and that you must supply any API key yourself; prefer a self-hosted baseURL (vLLM/Ollama) if you want to avoid sending data to third-party clouds. 3) The smoke test uses child_process.execSync to run the CLI — running the tests executes the shipped code (ingest/reset/query) which will read/write files under the skill directory; run in a sandbox if you need extra isolation. 4) If you plan to use SQLite, the adapter requires a native module (better-sqlite3) which you must install; this is optional. If you want further assurance, inspect src/ and dist/ files listed here (they are plain JS, not obfuscated) or run the test in an isolated environment.tests/smoke-test.js:18
Shell command execution detected (child_process).
src/providers/openai.js:63
Environment variable access combined with network send.
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk9705hg5aamphzaq5eymd899y9849thb
License
MIT-0
Free to use, modify, and redistribute. No attribution required.