Reading Tracker
ReviewAudited by ClawScan on May 10, 2026.
Overview
This mostly looks like a normal reading-notes skill, but its script builds file paths directly from book titles, which could let a crafted title write outside the intended reading folder.
Review this skill before installing. It appears purpose-aligned, but use ordinary book titles without path-like characters until filename sanitization is fixed, enable the cron reminder only if you want scheduled prompts, and avoid running scripts that are referenced but not included in the reviewed package.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A maliciously crafted or accidental book title could create or overwrite files in unexpected local locations that the user account can write to.
The user-controlled book title is used directly to build the output path before writing a file. Without sanitizing path separators, absolute paths, or traversal components, a crafted title could cause writes outside the intended books directory.
file_name = f"{title}-{month}.md"; file_path = BOOKS_DIR / file_name; file_path.write_text(content, encoding="utf-8")Sanitize book titles into safe filenames, reject absolute paths and '..' components, resolve the path, enforce that it stays under the reading workspace, and avoid overwriting existing files without confirmation.
If the cron setup is installed, the agent may be invoked for reading reminders even when the user has not manually asked at that moment.
The skill documents a weekly scheduled system event for review reminders. This is disclosed and purpose-aligned, but it is persistent scheduled agent activity if enabled.
通过 Cron 每周触发 ... "kind": "cron", "expr": "0 9 * * 1" ... "text": "检查今日阅读复习任务 / Check today's reading reviews"
Enable the schedule only if you want automatic reminders, and make sure there is a clear way to view, pause, or remove the scheduled task.
Some documented functionality may be missing, or a user might later run similarly named scripts that were not part of this review.
SKILL.md references helper scripts that are not included in the provided file manifest, which only includes scripts/reading_cli.py under scripts.
`scripts/generate_report.py` - 报告生成 / Report generation; `scripts/review_scheduler.py` - 复习计划 / Review scheduling
Only run scripts that are included in the reviewed package, and update the documentation or manifest so referenced helper files match the shipped artifacts.
Personal reading notes and reflections will remain on disk and may be reused in later reports or review prompts.
The skill persistently stores reading history, notes, thoughts, and review schedules in local files for later reuse in reviews and reports.
WORKSPACE = Path.home() / ".qclaw" / "workspace" / "reading"; LIBRARY_FILE = WORKSPACE / "library.json"; SCHEDULE_FILE = WORKSPACE / "schedule.json"
Do not record sensitive reflections unless you are comfortable storing them locally, and consider adding documentation for retention, deletion, and backup behavior.