ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Reminder

v1.0.5

Create one-time reminder tasks using OpenClaw cron. User specifies reminder time and task content in natural language via Discord, and the task result will b...

0· 1.5k·9 current·9 all-time
bySky Yan@skyan
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The skill declares and requires the openclaw binary and the session_status tool which are appropriate for creating cron jobs and obtaining Discord deliveryContext. No unrelated credentials, config paths, or external binaries are requested.
Instruction Scope
SKILL.md instructs the agent to call session_status (to obtain deliveryContext) and to run openclaw cron add with user-provided task content after validating it with scripts/sanitize-message.sh. Accessing deliveryContext (accountId and channel) is expected for routing the reminder, but users should be aware that session_status exposes session routing info and the agent will include the task text in a CLI argument to openclaw.
Install Mechanism
No install spec — instruction-only with a small included shell script. Nothing is downloaded or written by an installer, minimizing install-time risk.
Credentials
The skill requests no environment variables or credentials. The only runtime data it reads (deliveryContext) is necessary for delivering reminders to the correct Discord channel/account.
Persistence & Privilege
always is false and the skill does not request elevated or persistent platform-wide privileges. It does not modify other skills' configs or require permanent presence.
Assessment
This skill appears to do exactly what it says: schedule one-time reminders via openclaw cron and route results back to Discord. Before installing, confirm you trust the openclaw binary on your system and understand how the agent builds the openclaw CLI invocation: the included sanitize-message.sh is conservative (rejects characters like quotes, pipes, redirects, newlines, and some command names) but it cannot substitute for careful argument quoting when the agent constructs the shell command. If you plan to use this skill, review how the agent passes the sanitized text to openclaw (ensure it's passed as a single quoted/escaped argument) and consider additional server-side validation if you require stricter guarantees. Also be aware that session_status reveals deliveryContext (account/channel) which is necessary for delivery but is sensitive routing information.

Like a lobster shell, security has layers — review code before you run it.

latestvk97fvpk328ygp6r95b10dt0kb5820ng1

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Clawdis
Binsopenclaw

Comments