v1.0.0

Skylv Knowledge Graph Notes

ReviewClawScan verdict for this skill. Analyzed May 3, 2026, 12:51 AM.

Analysis

This appears to be a legitimate local note-linking tool, but it can recursively read and automatically modify many of your note files, so it deserves review before use.

GuidanceOnly install or run this if you are comfortable with it reading your notes directory and potentially editing note files. Start with a small test folder or a backed-up/version-controlled vault, use read-only export formats first, and verify any external npm package before installing it globally.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusConcern

export.js

for (const e of edges.filter(ee => ee.type === 'auto')) { ... content += `\n\n## Related\n\n- ${linkText} ...`; fs.writeFileSync(notePath, content); }

The Obsidian export path appends generated links directly into existing note files for every cached high-confidence edge, with no visible confirmation, backup, or dry-run gate.

User impactRunning the skill in its auto-link/export flow could change many notes at once and may be difficult to undo without version control or backups.

RecommendationRun it first on a copy of the notes directory or after committing notes to version control; prefer JSON/Mermaid/read-only output until you approve the proposed links.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceMediumStatusNote

README.md

# Install
npm install -g note-linking
# or just run directly with node

The README suggests installing a global npm package even though the registry entry has no install spec or homepage; the reviewed artifacts do not establish the provenance of that external package.

User impactInstalling a similarly named npm package could run code outside the reviewed skill artifacts.

RecommendationUse the included reviewed JavaScript files directly, or verify the npm package publisher and source before installing it globally.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceHighStatusNote

export.js

const GRAPH_CACHE = path.join(process.env.TEMP || '/tmp', 'note-linking-graph.json'); ... edges = JSON.parse(fs.readFileSync(GRAPH_CACHE, 'utf8')).edges || [];

The skill stores and reuses a persistent graph cache outside the notes directory; that cache can contain private note names/relationships and can influence later exports.

User impactA record of your note graph may remain in the temp directory, and stale cached links may affect future reports or auto-linking runs.

RecommendationDelete the temp graph cache after sensitive runs, and prefer a cache path scoped to the specific notes directory with validation before any write-back.