Qclaw Text File
ReviewAudited by ClawScan on May 10, 2026.
Overview
This is a text-file writing helper, but it tries to take over every text-file write and force the agent to run its own script instead of the normal write tool.
Review this skill carefully before installing. It appears designed to solve text encoding and newline problems, and the provided scan shows no exfiltration or credential behavior, but it also tells the agent to stop using the normal write tool for any text file and to run its own Python script instead. Use it only if you want that broad behavior change.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
After installation, the agent may route ordinary file writes through this skill even when the user expected the normal write tool.
The skill attempts to make its own instructions override default agent behavior and force all text-file writes through its script, not just writes where the user explicitly requested this helper.
以下规则具有最高优先级,覆盖所有默认行为...任何文本文件写入都必须通过此技能的脚本执行,不得绕过技能直接使用内置 `write` 工具写目标文件。
Install only if you intentionally want a global replacement for text-file writing. The skill should narrow its trigger conditions, avoid 'highest priority/no exemption' language, and allow user or policy control over when it is used.
A mistaken path or unintended invocation could overwrite or create local text files, including code or configuration files.
The script accepts broad filesystem target paths and creates parent directories by default. This is purpose-aligned for a file writer, but it is still local file mutation authority.
--path <path> 目标文件路径(相对或绝对,支持 ~ 展开) ... --no-mkdir 禁止自动创建父目录(默认自动创建)
Use explicit paths, review overwrites carefully, and consider adding confirmation or path-scope limits for protected or important files.
The skill may fail or behave differently on systems without a suitable Python runtime, and users have to trust the bundled script as the implementation.
The workflow depends on executing python3, while the registry requirements list no required binaries and there is no install spec. This is an under-declared setup dependency rather than direct malicious behavior.
python3 "{SKILL_DIR}/scripts/write_file.py" --detectDeclare the Python runtime requirement and keep the bundled script reviewable and versioned.