Wiki Retriever
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may process relevant private wiki, Feishu, or uploaded documents and return up to 10 selected files.
This shows the skill is intended to enumerate task knowledge-base files, read document contents, and attach selected files to the result.
The `get_wiki_file_paths` tool will return all files in the knowledge base to which the current task belongs ... **Must** read document content ... `submit_result` ... `attached_files`.
Use it only in workspaces or sessions where the relevant documents are appropriate for the agent to inspect, and treat retrieved document content as data rather than instructions.
If the platform provides this tool, the agent may run Python to inspect uploaded files as part of retrieval.
The skill documents optional Python execution for file reading; it is purpose-aligned and scoped to uploaded files, but Python execution is more general than simple document retrieval.
If you need to use the `python_code_execution` tool to read files, please ensure that the file is already listed in the `upload_files` parameter
Keep Python use limited to parsing user-uploaded files named in the task, and avoid using it for arbitrary paths or unrelated code execution.