TaskQueue — Async Task Queue for AI Agents
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This appears to be a purpose-aligned in-memory task queue, with the main caution that queued handlers can repeat or automate whatever actions the caller gives them.
This skill looks benign for its stated purpose. Before using it for real workflows, make sure any queued tasks that affect accounts, files, public content, or business systems have clear user approval and safe retry behavior.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If a queued task sends messages, updates boards, publishes content, or changes files, the queue may automate or retry those actions.
The queue executes caller-supplied handlers or a fallback executor, which is central to a task queue but means the safety of real-world actions depends on what tasks are queued.
if (task.handler) { resultPromise = task.handler(task); } else if (executor) { resultPromise = executor(task); }Use reviewed handlers, set appropriate retry and timeout limits, and avoid automatically retrying non-idempotent or high-impact actions without user confirmation.