ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Kan.bn TODO API

v0.1.0

Manage personal TODOs in Kan.bn through API-driven operations. Use this whenever the user wants to create, update, move, prioritize, search, summarize, or cl...

1· 385·0 current·0 all-time
byQihao@wujiao233
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
Name/description align with a single-user Kan.bn TODO client and the included script implements appropriate API calls. However, the registry metadata declares no required credentials while the SKILL.md and script clearly require either KANBN_TOKEN or KANBN_API_KEY for operation. That mismatch is unexplained and inconsistent.
Instruction Scope
Runtime instructions stay focused on single-user TODO workflows and encourage minimal discovery before mutation. They also instruct the agent to use the provided script, which itself attempts to read ~/.bashrc exports as a fallback for auth. Reading ~/.bashrc is limited to extracting the three Kan.bn-related names, but any file read of a user's shell rc is a privacy surface worth flagging.
Install Mechanism
No install spec is present (instruction-only skill with an included script). Nothing is downloaded during install; risk from install mechanism is low. The script will be executed if the agent runs it, and it performs network calls to the Kan.bn API.
!
Credentials
The script requires a Kan.bn bearer token or API key (KANBN_TOKEN or KANBN_API_KEY) and optionally KANBN_BASE_URL; these are proportionate to the task. But the skill registry didn't declare these required env vars or a primary credential, creating an inconsistency that could surprise users. The script's fallback to parse ~/.bashrc to find these values increases the chance of inadvertently exposing secrets stored there.
Persistence & Privilege
The skill is not forced into every agent run (always: false), is user-invocable, and does not request elevated or system-wide privileges. It does not attempt to modify other skills or global agent settings.
What to consider before installing
This skill appears to implement a legitimate single-user Kan.bn TODO client, but note two things before installing: (1) the registry metadata does not declare the credentials the skill expects — SKILL.md and the script expect KANBN_TOKEN or KANBN_API_KEY — so be prepared to provide those when using the skill; (2) the included script will try to read ~/.bashrc exports as a fallback to discover those credentials, which is convenient but can expose other stored values if your shell RC contains secrets. Recommended actions: inspect the script yourself (it is included) to confirm no unexpected behavior, avoid putting unrelated secrets in ~/.bashrc, consider creating a scoped/ephemeral Kan.bn API key for this skill, test with the self-test command first (no network access), and only supply credentials when you trust the skill source. If you cannot verify the publisher or prefer not to share credentials, do not enable the skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk979frys6e95jw8c8rgmred3d182pj20

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments