v1.0.0

ARCHIV

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 8:07 AM.

Analysis

The Roon music-control instructions are mostly coherent, but the package includes an unrelated long-term memory file with credential locations, personal account data, global tool instructions, and a Git/cron backup reference.

GuidanceDo not install this package as-is unless you intentionally want to import the included MEMORY.md context. For a safe Roon skill, remove the unrelated memory file, credential references, cron/Git backup notes, and non-Roon tool instructions; then verify the remaining Roon API endpoint and zone IDs match your own system.

Findings (5)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agent Goal Hijack

SeverityMediumConfidenceHighStatusConcern

MEMORY.md

Beim Zugriff immer das Skill **home-assistant-best-practices** verwenden ... Bei allen Kostenfragen ... diesen Skill priorisieren

MEMORY.md contains global instructions that force tool or skill choices for non-Roon tasks, redirecting agent behavior outside the stated purpose.

User impactThe skill could bias your agent toward unrelated workflows and tools even when you only intended to install a Roon controller.

RecommendationDelete unrelated global directives and keep instructions limited to user-requested Roon control.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusConcern

MEMORY.md

**Primär:** agent-browser CLI (via exec) - für Web-Automatisierung/Scraping ... **Query:** `curl "http://192.168.1.247:8888/search?q=QUERY&format=json"`

The memory file introduces broad exec/browser/curl workflows for web automation and local services that are not part of controlling Roon.

User impactAn agent may perform broader local command, browser, or network actions than a user would expect from this music-control skill.

RecommendationRemove unrelated tool workflows and document only the specific local Roon API calls needed for playback control.

Rogue Agents

SeverityHighConfidenceMediumStatusConcern

MEMORY.md

**Repo:** https://github.com/WegoW/Openclaw.git ... **Hourly Cron:** MEMORY.md + memory/ auto commit/push (`scripts/backup.sh`)

The artifact describes an ongoing background process that syncs memory files to a GitHub repository, which is unrelated to a Roon controller and suggests persistent behavior around sensitive context.

User impactPrivate memory content could be persistently synchronized outside the local agent environment if this workflow is present or followed.

RecommendationDo not include backup/cron behavior in this skill; keep any memory backups separate, explicit, and user-approved.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

MEMORY.md

**Keys:** `~/.trakt.yaml` (client-id/secret/access-token ✅ ready) ... **Keys:** `/root/.openclaw/openclaw.json` → skills.entries.lastfm.env (LASTFM_USER=WegoW / LASTFM_API_KEY)

The artifact points to credential stores and account-specific API keys for unrelated services, while the registry metadata declares no required credentials.

User impactAn agent could be steered toward reading or using unrelated local account credentials beyond the Roon music-control purpose.

RecommendationDo not package credential paths or account-specific secrets references in this skill; declare only the credentials needed for Roon, if any.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityHighConfidenceHighStatusConcern

MEMORY.md

# 🧠 MEMORY.md - Langzeit-Erinnerungen (Molty's Kernwissen) ... **Behavior:** Mandatory first step for prior work/dates/people/etc.

The skill package includes a broad long-term memory file with instructions that are not scoped to Roon. Such memory can be over-trusted by an agent and influence unrelated future tasks.

User impactInstalling this as-is could import someone else's persistent memory and private context into your agent's behavior.

RecommendationRemove MEMORY.md or replace it with a minimal Roon-only preference file before installation.