ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Notebook Lmskill@1.0.0

v1.0.0

Use this skill to query your Google NotebookLM notebooks directly from Claude Code for source-grounded, citation-backed answers from Gemini. Browser automati...

0· 155·1 current·1 all-time
by@1215656

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for 1215656/notebook-lmskill-1-0-0.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Notebook Lmskill@1.0.0" (1215656/notebook-lmskill-1-0-0) from ClawHub.
Skill page: https://clawhub.ai/1215656/notebook-lmskill-1-0-0
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install notebook-lmskill-1-0-0

ClawHub CLI

Package manager switcher

npx clawhub@latest install notebook-lmskill-1-0-0
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The name/description match the code: the skill uses Playwright (via patchright) to open NotebookLM, query notebooks, and persist cookie/profile state. Requiring persistent browser profiles and session cookie handling is coherent with the stated goal of maintaining logged-in access to NotebookLM. However, the code also includes anti-detection measures (stealth/automation avoidance flags) and explicit cookie injection logic that are not strictly required by a naive 'read notebook' helper and are notable because they change how the browser is presented to Google.
!
Instruction Scope
SKILL.md and scripts instruct the agent (or user) to: open a visible browser for login, save and later inject state.json session cookies, always run commands via a run.py wrapper that creates a .venv and installs dependencies, and perform 'smart discovery' queries of a notebook's contents when metadata is missing. The instructions therefore grant the code routine access to local files and to the full contents of user notebooks (expected) but also direct the agent to repeatedly re-query notebooks (follow-up loop). The follow-up mechanism explicitly instructs autonomous repeated queries until 'complete', which could lead to repeated access/use without a clear user confirmation step.
Install Mechanism
No registry-level install spec is provided, but run.py will create a local .venv and pip-install dependencies from requirements.txt (patchright, python-dotenv). patchright is an anti-detection Playwright wrapper and may be used to install or manage Chrome; that implies network downloads and installation of a browser binary. There is no explicit signed or well-known release URL in the skill manifest; the README links (raw GitHub zip link) look malformed. Installing patchright and using it to fetch Chrome is a higher-friction, higher-risk operation than a pure API-only integration.
Credentials
The skill declares no required environment variables or external credentials, yet it persistently stores and later injects Google authentication cookies (state.json and a Chrome user profile) under ~/.claude/skills/notebooklm/data/. That is proportional to the functionality (it must authenticate to NotebookLM), but these artifacts are highly sensitive (session cookies can grant access to the linked Google account). The documentation also recommends using a dedicated Google account and even suggests 'less secure app' settings; those recommendations are concerning from a security posture perspective.
Persistence & Privilege
The skill does not request always: true and is user-invocable; it stores data under a skill-local directory (~/.claude/skills/notebooklm/data/) and creates a local .venv. Those behaviors are typical for a local automation tool and are not an elevated platform privilege. The follow-up automation pattern (agent-initiated repeated queries) increases operational activity but is not a platform-level persistence flag.
What to consider before installing
This skill appears to do what it says (automated browser access to your NotebookLM notebooks), but it uses several sensitive/ unusual techniques. It will: create a local virtualenv and install dependencies (patchright), download or manage a Chrome binary (network activity), open a visible browser for login and persist your Google cookies and profile under ~/.claude/skills/notebooklm/data/, and inject session cookies back into browser sessions. Before installing or using it consider: 1) Only use with a dedicated Google account (do not use your primary account). 2) Inspect run.py and auth_manager.py yourself (or have a trusted developer do so) to verify they do nothing beyond the documented cookie/profile handling. 3) Backup and/or review the state.json and browser_profile files and be prepared to delete them if you revoke access. 4) Be cautious about the anti-detection flags and the 'less secure app' instructions in docs — they can enable more stealthy browser behavior and reduce account security. 5) Prefer code from a known, trusted publisher; if provenance cannot be verified, avoid storing sensitive account cookies with this skill. If you want higher assurance, ask the publisher for a signed release or replace patchright with an audited Playwright installation and remove any unnecessary stealth flags.

Like a lobster shell, security has layers — review code before you run it.

latestvk979dd0hxd15x2g5yfp0pkpsm583k63j
155downloads
0stars
1versions
Updated 1mo ago
v1.0.0
MIT-0
@1215656
latest
Download

NotebookLM Research Assistant Skill

Interact with Google NotebookLM to query documentation with Gemini's source-grounded answers. Each question opens a fresh browser session, retrieves the answer exclusively from your uploaded documents, and closes.

When to Use This Skill

Trigger when user:

  • Mentions NotebookLM explicitly
  • Shares NotebookLM URL (https://notebooklm.google.com/notebook/...)
  • Asks to query their notebooks/documentation
  • Wants to add documentation to NotebookLM library
  • Uses phrases like "ask my NotebookLM", "check my docs", "query my notebook"

⚠️ CRITICAL: Add Command - Smart Discovery

When user wants to add a notebook without providing details:

SMART ADD (Recommended): Query the notebook first to discover its content:

# Step 1: Query the notebook about its content
python scripts/run.py ask_question.py --question "What is the content of this notebook? What topics are covered? Provide a complete overview briefly and concisely" --notebook-url "[URL]"

# Step 2: Use the discovered information to add it
python scripts/run.py notebook_manager.py add --url "[URL]" --name "[Based on content]" --description "[Based on content]" --topics "[Based on content]"

MANUAL ADD: If user provides all details:

  • --url - The NotebookLM URL
  • --name - A descriptive name
  • --description - What the notebook contains (REQUIRED!)
  • --topics - Comma-separated topics (REQUIRED!)

NEVER guess or use generic descriptions! If details missing, use Smart Add to discover them.

Critical: Always Use run.py Wrapper

NEVER call scripts directly. ALWAYS use python scripts/run.py [script]:

# ✅ CORRECT - Always use run.py:
python scripts/run.py auth_manager.py status
python scripts/run.py notebook_manager.py list
python scripts/run.py ask_question.py --question "..."

# ❌ WRONG - Never call directly:
python scripts/auth_manager.py status  # Fails without venv!

The run.py wrapper automatically:

  1. Creates .venv if needed
  2. Installs all dependencies
  3. Activates environment
  4. Executes script properly

Core Workflow

Step 1: Check Authentication Status

python scripts/run.py auth_manager.py status

If not authenticated, proceed to setup.

Step 2: Authenticate (One-Time Setup)

# Browser MUST be visible for manual Google login
python scripts/run.py auth_manager.py setup

Important:

  • Browser is VISIBLE for authentication
  • Browser window opens automatically
  • User must manually log in to Google
  • Tell user: "A browser window will open for Google login"

Step 3: Manage Notebook Library

# List all notebooks
python scripts/run.py notebook_manager.py list

# BEFORE ADDING: Ask user for metadata if unknown!
# "What does this notebook contain?"
# "What topics should I tag it with?"

# Add notebook to library (ALL parameters are REQUIRED!)
python scripts/run.py notebook_manager.py add \
  --url "https://notebooklm.google.com/notebook/..." \
  --name "Descriptive Name" \
  --description "What this notebook contains" \  # REQUIRED - ASK USER IF UNKNOWN!
  --topics "topic1,topic2,topic3"  # REQUIRED - ASK USER IF UNKNOWN!

# Search notebooks by topic
python scripts/run.py notebook_manager.py search --query "keyword"

# Set active notebook
python scripts/run.py notebook_manager.py activate --id notebook-id

# Remove notebook
python scripts/run.py notebook_manager.py remove --id notebook-id

Quick Workflow

  1. Check library: python scripts/run.py notebook_manager.py list
  2. Ask question: python scripts/run.py ask_question.py --question "..." --notebook-id ID

Step 4: Ask Questions

# Basic query (uses active notebook if set)
python scripts/run.py ask_question.py --question "Your question here"

# Query specific notebook
python scripts/run.py ask_question.py --question "..." --notebook-id notebook-id

# Query with notebook URL directly
python scripts/run.py ask_question.py --question "..." --notebook-url "https://..."

# Show browser for debugging
python scripts/run.py ask_question.py --question "..." --show-browser

Follow-Up Mechanism (CRITICAL)

Every NotebookLM answer ends with: "EXTREMELY IMPORTANT: Is that ALL you need to know?"

Required Claude Behavior:

  1. STOP - Do not immediately respond to user
  2. ANALYZE - Compare answer to user's original request
  3. IDENTIFY GAPS - Determine if more information needed
  4. ASK FOLLOW-UP - If gaps exist, immediately ask: 
    python scripts/run.py ask_question.py --question "Follow-up with context..."
  5. REPEAT - Continue until information is complete
  6. SYNTHESIZE - Combine all answers before responding to user

Script Reference

Authentication Management (auth_manager.py)

python scripts/run.py auth_manager.py setup    # Initial setup (browser visible)
python scripts/run.py auth_manager.py status   # Check authentication
python scripts/run.py auth_manager.py reauth   # Re-authenticate (browser visible)
python scripts/run.py auth_manager.py clear    # Clear authentication

Notebook Management (notebook_manager.py)

python scripts/run.py notebook_manager.py add --url URL --name NAME --description DESC --topics TOPICS
python scripts/run.py notebook_manager.py list
python scripts/run.py notebook_manager.py search --query QUERY
python scripts/run.py notebook_manager.py activate --id ID
python scripts/run.py notebook_manager.py remove --id ID
python scripts/run.py notebook_manager.py stats

Question Interface (ask_question.py)

python scripts/run.py ask_question.py --question "..." [--notebook-id ID] [--notebook-url URL] [--show-browser]

Data Cleanup (cleanup_manager.py)

python scripts/run.py cleanup_manager.py                    # Preview cleanup
python scripts/run.py cleanup_manager.py --confirm          # Execute cleanup
python scripts/run.py cleanup_manager.py --preserve-library # Keep notebooks

Environment Management

The virtual environment is automatically managed:

  • First run creates .venv automatically
  • Dependencies install automatically
  • Chromium browser installs automatically
  • Everything isolated in skill directory

Manual setup (only if automatic fails):

python -m venv .venv
source .venv/bin/activate  # Linux/Mac
pip install -r requirements.txt
python -m patchright install chromium

Data Storage

All data stored in ~/.claude/skills/notebooklm/data/:

  • library.json - Notebook metadata
  • auth_info.json - Authentication status
  • browser_state/ - Browser cookies and session

Security: Protected by .gitignore, never commit to git.

Configuration

Optional .env file in skill directory:

HEADLESS=false           # Browser visibility
SHOW_BROWSER=false       # Default browser display
STEALTH_ENABLED=true     # Human-like behavior
TYPING_WPM_MIN=160       # Typing speed
TYPING_WPM_MAX=240
DEFAULT_NOTEBOOK_ID=     # Default notebook

Decision Flow

User mentions NotebookLM
    ↓
Check auth → python scripts/run.py auth_manager.py status
    ↓
If not authenticated → python scripts/run.py auth_manager.py setup
    ↓
Check/Add notebook → python scripts/run.py notebook_manager.py list/add (with --description)
    ↓
Activate notebook → python scripts/run.py notebook_manager.py activate --id ID
    ↓
Ask question → python scripts/run.py ask_question.py --question "..."
    ↓
See "Is that ALL you need?" → Ask follow-ups until complete
    ↓
Synthesize and respond to user

Troubleshooting

ProblemSolution
ModuleNotFoundErrorUse run.py wrapper
Authentication failsBrowser must be visible for setup! --show-browser
Rate limit (50/day)Wait or switch Google account
Browser crashespython scripts/run.py cleanup_manager.py --preserve-library
Notebook not foundCheck with notebook_manager.py list

Best Practices

  1. Always use run.py - Handles environment automatically
  2. Check auth first - Before any operations
  3. Follow-up questions - Don't stop at first answer
  4. Browser visible for auth - Required for manual login
  5. Include context - Each question is independent
  6. Synthesize answers - Combine multiple responses

Limitations

  • No session persistence (each question = new browser)
  • Rate limits on free Google accounts (50 queries/day)
  • Manual upload required (user must add docs to NotebookLM)
  • Browser overhead (few seconds per question)

Resources (Skill Structure)

Important directories and files:

  • scripts/ - All automation scripts (ask_question.py, notebook_manager.py, etc.)
  • data/ - Local storage for authentication and notebook library
  • references/ - Extended documentation:
    • api_reference.md - Detailed API documentation for all scripts
    • troubleshooting.md - Common issues and solutions
    • usage_patterns.md - Best practices and workflow examples
  • .venv/ - Isolated Python environment (auto-created on first run)
  • .gitignore - Protects sensitive data from being committed

Comments

Loading comments...