KnowMine
ReviewAudited by ClawScan on May 10, 2026.
Overview
KnowMine is a coherent remote memory/search skill, but it asks users to store personal knowledge remotely while making a privacy claim that conflicts with its stated use of OpenAI embeddings.
Use KnowMine only if you are comfortable sending selected notes, memories, and preferences to its remote service and potentially to OpenAI for embeddings. Protect the API key, review what gets saved or exported as a system prompt, and confirm the provider’s privacy and retention practices before storing sensitive information.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user may save sensitive notes believing they stay only with KnowMine, while the content may also be processed by OpenAI for embeddings.
The privacy claim that there is no third-party data sharing conflicts with the stated use of OpenAI embeddings, which likely involves processing saved knowledge through a third-party provider.
"Embeddings: OpenAI text-embedding-3-small, auto-generated on save" and "Network: All requests go to `knowmine.ai` only (no third-party data sharing)"
Clarify the data-processing path, privacy policy, and whether saved content is sent to OpenAI before storing sensitive information.
Saved notes, preferences, or inferred profile details may influence future conversations or be exposed through search/profile outputs.
The skill intentionally creates persistent cross-session memory and can turn stored knowledge into future agent context, which is useful but can preserve sensitive or misleading information.
"Your agent can save knowledge entries during conversations and retrieve them later" and "get_soul | Generate a user profile summary based on your knowledge. Exportable as a system prompt."
Only save information you want persisted, review generated profile/system-prompt exports before use, and delete or edit entries that are sensitive or incorrect.
Anyone with the key could potentially access or modify the associated KnowMine knowledge base.
The skill requires a bearer API key for the remote KnowMine account; this is expected for the service but is still account-bearing authority.
"KNOWMINE_API_KEY ... required: true" and "Auth header: Authorization: Bearer <YOUR_KNOWMINE_API_KEY>"
Store the API key securely, rotate it if exposed, and avoid sharing it in chats or logs.