Skillv1.0.0

ClawScan security

quick-note-tool · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 10, 2026, 4:54 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is internally consistent for a simple on-disk note tool: it reads/writes a notes/quick-notes.md file in the workspace and does not request credentials or network access; the only minor inconsistency is a missing PowerShell script mentioned in the docs.
Guidance: This skill appears to be a simple local notes utility and is internally coherent. Before installing: (1) be aware notes are stored in workspace_root/notes/quick-notes.md — don’t put secrets there if you need them protected; (2) the SKILL.md references a PowerShell script (note.ps1) that is not included — Windows support may be incomplete; (3) the script creates a backup file (quick-notes.md.bak) when deleting notes — check and clean backups if needed; (4) review the script yourself if you have strict security requirements (it uses grep, sed, cp and modifies files in the workspace but makes no network calls). If you plan to store sensitive data, prefer an encrypted storage solution instead of plaintext notes.

Purpose & Capability: okName/description (quick note and snippet storage) matches the actual behavior: a bash script that stores, searches, lists, tags, and deletes notes in notes/quick-notes.md under the workspace root. No unrelated credentials, binaries, or system paths are required.
Instruction Scope: noteSKILL.md instructs the agent to run the included bash script (paths align). It also shows an example PowerShell invocation referencing skills/quick-note-1.0.0/scripts/note.ps1, but no note.ps1 is present in the package — Windows support appears incomplete. The instructions do not ask the agent to read or exfiltrate other files or environment variables beyond the workspace notes file.
Install Mechanism: okThere is no install spec (instruction-only plus a small script). Nothing is downloaded or written to unexpected system locations; the script only creates a notes/ directory in the workspace and a notes file there.
Credentials: okNo environment variables, credentials, or config paths are requested. The tool operates on a local workspace file only. Example content in the README shows storing API keys as user content, but that is a user action (not a credential requirement of the skill).
Persistence & Privilege: okThe skill does not request always:true and does not modify other skills or system-wide agent configuration. It persistently stores notes only in notes/quick-notes.md and creates a backup quick-notes.md.bak when deleting.