Back to skill
Skillv1.0.1
ClawScan security
relation-keeper · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:00 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, install steps, and declared configuration are consistent with a local relationship/reminder manager that stores PII and schedules periodic scans; nothing in the package indicates hidden exfiltration or unrelated credential access.
- Guidance
- This skill is coherent with its description, but it stores sensitive personal information (names, phone numbers, addresses, birthdays) as JSON files in the skill data directory (by default relation-keeper/data, or $RELATION_KEEPER_DATA if set). Installing will run a postinstall script that tries to register a cron job with the local OpenClaw CLI to run scan.js every 15 minutes; ensure you trust and have OpenClaw installed. If you set RELATION_KEEPER_CHANNEL (e.g., telegram:CHAT_ID), reminders will be pushed to that channel — confirm that the channel recipient and platform gateway are secure before enabling. If you want more assurance, review the scripts (they are included) and consider placing RELATION_KEEPER_DATA in a protected directory or keeping backups/encryption for stored PII. If you prefer not to auto-register a cron, skip postinstall and run npm run install:cron manually after review.
Review Dimensions
- Purpose & Capability
- okName/description match the implemented behavior: storing portraits, past/future events, and scanning for reminders. Required files, scripts, and optional env vars (RELATION_KEEPER_DATA, RELATION_KEEPER_TZ, RELATION_KEEPER_CHANNEL) are appropriate for this purpose.
- Instruction Scope
- noteRuntime instructions and scripts read/write JSON files under the skill data directory, parse user input, and print reminder messages. They do not access other system config or network endpoints. Note: the skill records sensitive personal data (names, phones, addresses) locally and will output reminder text to OpenClaw sessions or a configured channel.
- Install Mechanism
- okInstallation is a local npm postinstall that runs scripts/install.js to create data files and call the 'openclaw' CLI to add a cron. There are no remote downloads or external package installs beyond running npm scripts and Node.js usage, which is proportionate for the stated purpose.
- Credentials
- noteNo secret credentials are required. Declared environment variables (DATA dir, TZ, CHANNEL) are reasonable. If RELATION_KEEPER_CHANNEL is set (e.g., telegram:CHAT_ID), reminders will be routed to that channel (the skill itself does not request tokens; it delegates to platform/Gateway). Consider whether exposing PII to the configured channel is acceptable.
- Persistence & Privilege
- okThe skill is not always-enabled and uses normal autonomous invocation. The install script attempts to register a periodic cron task via the openclaw CLI (expected for scheduling reminders) and does not modify other skills or system-wide configs beyond adding a cron entry.