ClawHub

Readwise Official

v1.0.1

Access your Readwise highlights and Reader documents from the command line. Search, read, organize, and manage your entire reading library.

1· 455·1 current·1 all-time
byTristan@tristanh
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description say 'Readwise CLI' and the skill only requires the readwise CLI and documents how to use it. Required binary (readwise) and the documented commands are coherent with the stated purpose.
Instruction Scope
SKILL.md confines actions to invoking the readwise CLI, installing the CLI, and prompting for a Readwise access token. It does not instruct reading unrelated files, environment variables, or sending data to unexpected endpoints.
Install Mechanism
No formal install spec is provided (instruction-only). The doc suggests npm install -g @readwise/cli, which is a reasonable, common install path but performs a global npm install (writes to disk, may require elevated permissions). This is expected but worth noting since the skill lacks an automated, verifiable install spec or homepage/source metadata.
Credentials
The skill does not declare required env vars, but instructs the agent to ask the user for their Readwise access token and run readwise login-with-token. Requesting that token is appropriate for the stated functionality; however the skill does not formally declare it as a required credential in metadata, and the user should be aware they'll need to provide the access token interactively.
Persistence & Privilege
always is false and there are no config paths or other privileges requested. The skill does not request permanent presence or modify other skills/config; autonomous invocation is allowed (platform default) and appropriate for a CLI integration.
Assessment
This skill appears to be what it claims: it calls the official Readwise CLI to access your highlights and Reader. Before installing or using it: (1) confirm you want the agent to have access to your Readwise data — the agent will ask you to paste an access token to authenticate. Only paste the token into the platform's secure prompt; do not share it in chat logs or public places. (2) Verify the npm package @readwise/cli on the npm registry (author, downloads, repository) since the skill metadata lacks a homepage/source. (3) Note that 'npm install -g' writes files system-wide and may require privileges. (4) If you prefer tighter control, create a limited-scope Readwise token (if supported) or use a separate account for automation. If you want, I can list the exact commands the agent will run or help you check the npm package provenance.

Like a lobster shell, security has layers — review code before you run it.

Plugin bundle (nix)
Skill pack · CLI binary · Config
SKILL.mdCLIConfig
CLI help (from plugin)
readwise --help
latestvk9755ssjye285qh1cpzfk70aj9832824

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsreadwise

Comments