Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Projectmind
v1.2.2Projectmind is an AI-native project management assistant supporting natural language task management, progress tracking, daily standups, risk alerts, meeting...
⭐ 0· 72·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's name/description (project management, standups, risk alerts, time tracking) align with the included code: SQLite DB, handlers, engines, and notifier. The notifier module and config.json support sending to external webhooks (Feishu/WeCom/DingTalk/Slack) and SMTP; this is expected for a notifications feature but introduces network I/O that is not visible in the top-level registry metadata (no env/config required).
Instruction Scope
SKILL.md describes structured tool actions that map to handlers in the source. The runtime instructions and code operate on a local SQLite DB in the skill folder and only reference config.json in the skill directory. I did not see instructions that read unrelated system files or arbitrary environment variables. Asynchronous notifications may send content (e.g., blocker alerts, meeting action items) to configured external endpoints.
Install Mechanism
The registry lists 'No install spec — instruction-only', yet full source files are included. The package.json in the repository appears malformed (optionalDependencies block formatting issues, duplicated license field) and its 'files' array omits the src/ directory; this is a packaging inconsistency that could break npm installs or distribution. The dependency better-sqlite3 requires native build steps (npm install) but no install guidance is enforced by the registry metadata. Recommend caution: test installation in an isolated environment.
Credentials
The skill declares no required environment variables or primary credential, which matches most of the code: the DB and config are read from the skill directory. However, the optional config.json contains fields for webhooks and SMTP credentials (secrets like webhook URLs and SMTP user/pass). Those are optional and disabled by default, but if you enable notifications you must provide secrets — the skill will then transmit data to external endpoints. This is proportionate to a notifications feature but worth explicitly reviewing before enabling.
Persistence & Privilege
The skill does not request always:true and does not attempt to modify other skills or system-wide settings in the visible code. It creates/uses a local DB under the skill directory and writes logs/DB there, which is expected for this functionality.
What to consider before installing
This skill mostly does what it says: it stores a local SQLite DB and exposes project/task/standup features. Before installing, do the following: 1) Review src/utils/notifier.js to confirm exactly what gets sent and to which endpoints; 2) Do not enable notifications or paste webhook/SMTP secrets until you trust the notifier code and the destination endpoints; 3) Be aware package.json in the bundle looks malformed and may break npm install — run installation in an isolated/test environment first; 4) Verify the skill runs with the Node version you have and that native dependency better-sqlite3 builds correctly; 5) If you need higher assurance, run the code in a sandbox and/or audit the omitted files (notifier/formatter/validator) to confirm there is no unexpected data exfiltration.Like a lobster shell, security has layers — review code before you run it.
latestvk974366n66xb8mjrebk7yt4hsd839zhj
License
MIT-0
Free to use, modify, and redistribute. No attribution required.