Task Planner
PassAudited by ClawScan on May 1, 2026.
Overview
This appears to be a straightforward local task manager with persistent local storage and minor metadata gaps, but no evidence of cloud sync, exfiltration, or unsafe behavior.
This skill looks safe for local task tracking. Before installing, be aware that it stores your tasks on disk under ~/.task-planner/tasks.json by default, and do not put passwords or other secrets into task descriptions.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill may fail on systems without the expected local tools, but this does not indicate hidden installation or malicious behavior.
The registry metadata does not declare runtime binaries even though the skill documentation and included script rely on bash/python3, so runtime prerequisites are under-declared.
Required binaries (all must exist): none; Required binaries (at least one): none
Ensure bash 4+ and python3 are available before use; maintainers should declare these requirements in metadata.
Personal task names, deadlines, and priorities remain on the local machine and may reappear in later task-list outputs.
The script creates and maintains a persistent local task store, matching the documented local-storage design, so task contents can be retained and later displayed.
DATA_DIR="${TASK_PLANNER_DIR:-$HOME/.task-planner}"
TASKS_FILE="$DATA_DIR/tasks.json"
mkdir -p "$DATA_DIR"Avoid storing secrets in task text, review task-list output before acting on it, and delete or relocate the local tasks.json file if needed.