Wiki Retriever
PassAudited by ClawScan on May 1, 2026.
Overview
Wiki Retriever is an instruction-only document search skill whose disclosed behavior is to search, read, and attach relevant wiki or uploaded files.
This appears safe for its stated purpose as a wiki/document retriever. Before using it, make sure the current knowledge base or uploaded-file set does not contain unrelated confidential documents you would not want the agent to inspect or attach in results.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may process relevant private wiki, Feishu, or uploaded documents and return up to 10 selected files.
This shows the skill is intended to enumerate task knowledge-base files, read document contents, and attach selected files to the result.
The `get_wiki_file_paths` tool will return all files in the knowledge base to which the current task belongs ... **Must** read document content ... `submit_result` ... `attached_files`.
Use it only in workspaces or sessions where the relevant documents are appropriate for the agent to inspect, and treat retrieved document content as data rather than instructions.
If the platform provides this tool, the agent may run Python to inspect uploaded files as part of retrieval.
The skill documents optional Python execution for file reading; it is purpose-aligned and scoped to uploaded files, but Python execution is more general than simple document retrieval.
If you need to use the `python_code_execution` tool to read files, please ensure that the file is already listed in the `upload_files` parameter
Keep Python use limited to parsing user-uploaded files named in the task, and avoid using it for arbitrary paths or unrelated code execution.