v1.0.0

滴答清单任务管理工具

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 7:56 AM.

Analysis

This appears to match its advertised TickTick/Dida365 task-management purpose, but it needs read/write account access and stores local token/cache files.

GuidanceInstall only if you intend to give this skill read/write access to your Dida365/TickTick tasks. Configure credentials yourself, protect the local token file, clear or shorten the cache if your tasks are sensitive, and approve delete commands only after checking the exact IDs.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusNote

SKILL.md

禁止自动执行任何 `delete` 操作。在执行 `project delete` 或 `task delete` 之前，**必须**获得用户针对具体 ID 的明确批准。

The skill exposes delete operations for projects and tasks. It does include a clear instruction requiring explicit approval for the exact ID, so this is purpose-aligned but still high-impact.

User impactIf a delete command is approved or invoked incorrectly, tasks or projects in the Dida365 account may be removed.

RecommendationBefore approving any delete command, verify the project/task ID and ask the agent to show what will be deleted.

Agentic Supply Chain Vulnerabilities

SeverityInfoConfidenceHighStatusNote

metadata

Source: unknown; Homepage: none ... Required env vars: none ... Primary credential: none ... Install specifications: No install spec

The registry metadata does not fully declare the skill's provenance or its OAuth/Python runtime needs, even though the SKILL.md and code disclose them.

User impactA user relying only on registry metadata might miss that the skill needs OAuth credentials and local command execution.

RecommendationReview SKILL.md and the included Python files before installation, and treat the registry metadata as incomplete for permissions planning.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityMediumConfidenceHighStatusNote

auth.py

TOKEN_FILE = Path(__file__).with_name(".dida-token.json") ... "scope": "tasks:write tasks:read"

The skill requests read/write OAuth scope for Dida365 tasks and stores the resulting token in a local file. This is expected for the integration, but it grants sensitive account access.

User impactAnyone with the configured token can read and modify tasks/projects in the authorized Dida365/TickTick account.

RecommendationUse only with a Dida365 app/token you trust, keep `.dida-token.json` private, and revoke the OAuth authorization if you stop using the skill.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityLowConfidenceHighStatusNote

SKILL.md

本工具内置了缓存机制（默认 365 分钟）... `project get <id>` 获取缓存的项目任务。

The skill caches project and task data locally for performance. This is disclosed and useful, but cached task data may contain private information.

User impactTask and project details can remain on disk after queries until the cache expires or is cleared.

RecommendationShorten `DIDA_CACHE_MINUTES` or run `python3 index.py project clear-cache` if local task data should not persist.