Back to skill
Skillv1.6.1
ClawScan security
Voice Memo Sync · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 12, 2026, 3:05 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's files, installation steps, and runtime instructions are coherent with its stated purpose (syncing/transcribing/organizing voice memos on macOS); nothing requests unrelated credentials or capabilities, though it reads local user context and performs network downloads for optional components and model files.
- Guidance
- This skill appears to do what it says, but review these points before installing: (1) It will read local iCloud/Voice Memos directories and your agent memory files (USER.md / MEMORY.md) for personalized LLM processing — consider whether you want those read. (2) Optional components (whisper-cpp, yt-dlp, summarize, remindctl) enable extra features and may perform network access (model download from HuggingFace, downloading videos). If you prefer no network downloads, pre-install models/tools manually or inspect/modify scripts. (3) The installer can add a heartbeat auto-sync entry to HEARTBEAT.md — opt out if you don't want scheduled automatic processing. (4) Because the skill creates Apple Notes and Reminders via AppleScript, review those scripts if you need stricter controls. If these behaviors are acceptable, the skill is coherent with its purpose; otherwise, inspect/adjust the scripts and configuration before use.
Review Dimensions
- Purpose & Capability
- okName/description (voice memo sync + transcription) align with required binaries (ffmpeg, python3) and included scripts. Access to Apple Notes/Reminders, iCloud paths, whisper/yt-dlp are appropriate for the stated functionality.
- Instruction Scope
- noteSKILL.md and scripts explicitly read local files (iCloud directories, USER.md, MEMORY.md) and create notes/reminders via AppleScript and optional remindctl. Reading USER.md/MEMORY.md is expected for personalized LLM processing but is privacy-sensitive and should be noted by the user.
- Install Mechanism
- noteInstall uses brew formulas (ffmpeg, whisper-cpp, openai-whisper, yt-dlp) — low-risk, standard. The whisper-cpp path auto-downloads a model binary via curl from a HuggingFace URL (external network download of a large binary into ~/.cache) which is expected for local transcription but is a network operation you may want to review or mirror locally.
- Credentials
- okNo environment variables, tokens, or external credentials are requested. Scripts operate on local filesystem paths and macOS services (Notes/Reminders). Requested accesses are proportional to the skill's features.
- Persistence & Privilege
- noteThe installer writes files into the OpenClaw workspace (~/.openclaw/workspace), creates config and data dirs, may add a heartbeat entry to HEARTBEAT.md (auto-sync) and creates a data symlink — all local and expected. The skill is not 'always: true' and does not modify other skills' configs.