ClawHub
Back to skill
v1.0.1

taskleef

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 4:53 AM.

Analysis

The skill matches its stated Taskleef purpose, but it installs an unpinned external CLI that will use your API key and can change or delete your tasks.

GuidanceReview or trust the Taskleef CLI source before installing, because this skill downloads it from a mutable GitHub URL and then uses it with your API key. Use secure credential storage and confirm destructive actions such as delete, project delete, or board clear.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityMediumConfidenceHighStatusConcern
SKILL.md
"install":[{"id":"todo-cli","kind":"download","url":"https://raw.githubusercontent.com/Xatter/taskleef/main/taskleef-cli/todo","bins":["todo"]

The skill installs the executable CLI from a mutable raw GitHub main-branch URL, with no pinned version, checksum, or included source in the artifact set. That CLI is central to all account actions.

User impactA later change to the remote CLI could be installed and trusted to run with your Taskleef API key and modify your Taskleef account.
RecommendationInstall only if you trust this source; prefer a pinned release, checksum verification, or reviewing the CLI source before use.
Tool Misuse and Exploitation
SeverityLowConfidenceHighStatusNote
SKILL.md
todo delete <title-or-id>
...
todo project delete <project-name-or-id>
...
todo board clear <column-name-or-id>
...
Title match: Partial, case-insensitive title match

The documented tool can delete or clear Taskleef items and supports partial title matching, which is useful but can be risky if an item name is ambiguous.

User impactA vague request could complete, delete, move, or clear the wrong task, project, card, or board column.
RecommendationFor destructive actions, use exact IDs or ask for confirmation before deleting projects, deleting todos, or clearing board columns.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
SKILL.md
The CLI uses the `TASKLEEF_API_KEY` environment variable. Users can get their API key from https://taskleef.com.

The skill requires a Taskleef API key, which is expected for the service integration but grants account access to whichever CLI is run.

User impactThe installed command-line tool can act on your Taskleef account using your API key.
RecommendationStore the API key securely, rotate it if needed, and avoid using keys with broader access than necessary.