ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Zsxq Note

v0.1.0

知识星球笔记管理:创建个人文字笔记、查看笔记列表。当用户需要在知识星球记录个人笔记、随手记录想法、或查看历史笔记时使用。

0· 158·0 current·0 all-time
by@zhuguojie-unnoo

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for zhuguojie-unnoo/zsxq-note.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Zsxq Note" (zhuguojie-unnoo/zsxq-note) from ClawHub.
Skill page: https://clawhub.ai/zhuguojie-unnoo/zsxq-note
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install zsxq-note

ClawHub CLI

Package manager switcher

npx clawhub@latest install zsxq-note
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill's name, description, and commands all align with a simple note-create/list tool that delegates to a zsxq-cli binary. However the SKILL.md declares a required binary (zsxq-cli) while the registry metadata earlier showed no required binaries — an inconsistency. The dependency on a shared ../zsxq-shared/SKILL.md (not included) is effectively a hidden dependency.
!
Instruction Scope
The SKILL.md contains a CRITICAL instruction to 'MUST' read ../zsxq-shared/SKILL.md for authentication and error-handling rules. That referenced file is not bundled here; instructing the agent to read a sibling/shared SKILL.md at runtime can expose authentication rules or other sensitive instructions and gives the agent permission to access files outside this skill's bundle. The CLI commands perform write operations (create notes), which is expected, but the authentication mechanism and any steps in the external shared file are unknown and not declared.
Install Mechanism
This is an instruction-only skill with no install spec or code files, so nothing is written to disk by the skill itself. That is low-risk from an installer standpoint.
!
Credentials
No environment variables or credentials are declared, yet the skill requires authentication (per the referenced shared SKILL.md) and depends on an external CLI. The lack of declared env vars or primary credential is disproportionate to the expected need to authenticate the zsxq-cli. It's unclear where credentials come from (env vars, config files, or agent secrets), which is a risk.
Persistence & Privilege
The skill does not request persistent presence (always:false) and does not include install steps that modify agent configuration. Autonomous invocation is allowed (default) but not combined with any other elevated privileges.
What to consider before installing
This skill looks like a thin wrapper around an external CLI (zsxq-cli) and insists the agent read a separate shared SKILL.md for authentication — that shared file is not included here. Before installing, ask the publisher to provide the referenced ../zsxq-shared/SKILL.md so you can inspect how authentication is handled and what credentials are required. Verify where zsxq-cli stores or expects credentials (environment variables, config files like ~/.config or ~/.zsxq, or an external token) and confirm those requirements are reasonable. Also confirm the zsxq-cli binary is trustworthy and installed from a known source. If you cannot review the shared SKILL.md and the CLI's auth behavior, run any commands manually in a sandbox rather than granting the agent autonomous invocation. If you must install, avoid granting broad agent-level secrets until you know exactly which credentials the skill needs.

Like a lobster shell, security has layers — review code before you run it.

latestvk971xvh6thwz74h7knr5f4xq3d854zpw
158downloads
0stars
1versions
Updated 1w ago
v0.1.0
MIT-0
@zhuguojie-unnoo
latest
Download

note (v1)

CRITICAL — 开始前 MUST 先用 Read 工具读取 ../zsxq-shared/SKILL.md,其中包含认证、错误处理规则。

Core Concepts

  • 笔记(Note):个人私密(或特定权限)的文字记录,仅支持纯文本,不支持图片。与主题(Topic)不同,笔记是个人维度的内容。

Shortcuts(推荐优先使用)

Shortcut说明
+create创建一条个人文字笔记,仅支持纯文本
+list查看自己的笔记列表,支持分页

Comments

Loading comments...