karakeep-sh
PassAudited by ClawScan on May 1, 2026.
Overview
This appears to be a straightforward Karakeep API helper, but it needs your Karakeep API key and can read, modify, and delete bookmarks.
Install only if you want the agent to manage your Karakeep account. Provide a limited API key if possible, verify the server URL, and require explicit confirmation before delete or other irreversible changes.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone using the skill must provide a Karakeep API key, and actions taken with that key affect the user's Karakeep account.
The helper authenticates to the Karakeep API with a bearer API key, which is expected for this integration but grants account-level access to the configured server.
-H "Authorization: Bearer $KARAKEEP_API_KEY"
Use a Karakeep API key with the least privilege available, keep it out of shared logs or chats, and revoke it if you stop using the skill.
If invoked after confirmation, bookmarks can be permanently removed from Karakeep; accidental or premature invocation could delete the wrong item.
The script exposes a direct bookmark deletion operation. This matches the stated purpose and SKILL.md asks for confirmation before deletion, but the function itself does not enforce an interactive prompt.
curl -s -X DELETE "$KARAKEEP_API_URL/bookmarks/$bookmark_id"
Confirm the bookmark ID and the user's intent before any delete or remove operation, and prefer showing what will be changed before running it.
A user may not realize from metadata alone that the skill needs account credentials and local command-line tooling.
The registry metadata understates the setup contract for a helper that uses a Karakeep API key and command-line JSON/curl operations. The behavior is disclosed in the skill/script, but the metadata is incomplete.
Required binaries (all must exist): none ... Env var declarations: none ... Primary credential: none
Before installing, verify you are comfortable providing KARAKEEP_SERVER_URL and KARAKEEP_API_KEY, and ensure jq/curl-style command-line tooling is available.
Private saved pages, notes, or webpage content may be brought into the agent conversation when using content or search functions.
The helper can retrieve stored bookmark content and notes from Karakeep. This is expected for bookmark management, but that content may include private data or untrusted web text.
curl -s -X GET "$KARAKEEP_API_URL/bookmarks/$bookmark_id?includeContent=true"
Treat retrieved bookmark content as data, not instructions, and avoid asking the agent to expose private notes or saved content in unrelated contexts.