Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Crm
v0.1.1Personal CRM for managing contacts, relationships, and follow-ups using markdown files. Use when the user wants to add contacts, track relationships, set fol...
⭐ 2· 1.1k·0 current·0 all-time
by@xz-cn
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The skill is a markdown-based personal CRM and the included Python scripts implement adding, querying, importing/exporting, indexing, follow-ups and reminders via local file operations. There are no requests for unrelated credentials, network endpoints, or system-level privileges—capabilities requested match the stated purpose.
Instruction Scope
SKILL.md instructs copying templates and scripts into memory/contacts and running the CLI tools. The scripts operate on local files under CONTACTS_DIR (derived from __file__), which is consistent with the copy instructions. However the documentation has some copy-paste/path errors (e.g., 'memory/contacts/memory/contacts/scripts/...' duplication and inconsistent example paths in Heartbeat lines). Heartbeat instructions propose periodic execution of followup/reminder scripts — that is expected for reminder functionality but you should explicitly opt-in and confirm the paths are correct before enabling automation.
Install Mechanism
This is an instruction-only skill (no install spec). Code files are included in the package; there are no external downloads or extracted archives referenced. No package manager installs or remote code pulls are performed by the skill itself.
Credentials
The skill declares no required environment variables or external credentials. Scripts only read and write local markdown and index files and use PyYAML (yaml). The export tool validates output paths to prevent arbitrary workspace escapes (allows workspace, /tmp, or home), which is reasonable for export features. No secret exfiltration or unrelated env access is present.
Persistence & Privilege
always:false and no install-time persistence is requested. The skill recommends adding checks to HEARTBEAT.md for periodic runs (1–2x daily), which would cause automated executions if the user opts in. Autonomous invocation by the model is the platform default; combined with Heartbeat-style automation this means scripts could run on a schedule if you enable that — confirm you want periodic checks before adding them.
Assessment
This skill appears to do what it claims: a local markdown-based CRM implemented by included Python scripts. Before installing, do the following: 1) Review and fix the documented paths in SKILL.md (there are copy-paste duplications like memory/contacts/memory/contacts/ and inconsistent Heartbeat paths). 2) Place the scripts under memory/contacts/scripts (as the setup describes) so their relative CONTACTS_DIR resolves correctly. 3) When importing data, use --dry-run first to confirm results. 4) Only enable the Heartbeat/periodic checks if you want automated runs — otherwise run followups/remind manually. 5) Ensure memory/contacts isn't unintentionally synced to remote/shared storage (these files contain personal contact data). 6) Verify the manifest/signature if you need cryptographic assurance (README provides steps). If you want, run the tools in a sandbox or test workspace first.Like a lobster shell, security has layers — review code before you run it.
latestvk972nbd7fxdgt18heq5sd000s1825wtb
License
MIT-0
Free to use, modify, and redistribute. No attribution required.