by 安全扫描
OpenClaw
安全
medium confidenceNULL
评估建议
What to consider before installing Habit Flow
- Confirm install method: the registry metadata claimed "instruction-only" but the package contains code and an INSTALL.md. Install by cloning the repo into your gateway workspace (~/clawd/skills or ~/.clawdbot/skills) and run npm install as documented — do not treat it as a metadata-only skill.
- Review scripts that interact with the system before enabling them: specifically scripts/sync_reminders.ts, scripts/run_reminder.ts, and any example shell...详细分析 ▾
ℹ 用途与能力
The skill's name/description (habit tracking, NLP logging, reminders, coaching) match the included scripts, TypeScript source, and canvas visualization assets. The repo implements local JSON/JSONL storage, parsing, streak calculations, persona loading, cron/WhatsApp reminder sync, and visual dashboards — all reasonable for the declared purpose. Minor inconsistency: registry metadata states "No install spec — instruction-only" while SKILL.md includes a metadata.moltbot.install entry and the repo contains package.json and an INSTALL.md describing git clone + npm install. Also SKILL.md's install metadata lists bins ["node","npm"], which is atypical but not harmful.
ℹ 指令范围
SKILL.md explicitly instructs the agent to read/write files under ~/clawd/habit-flow-data/ and to load persona files from the skill's references/personas/ directory. That file access is coherent with persona loading and local storage. The skill also documents creating/syncing cron jobs (opt-in per changelog) to deliver WhatsApp reminders; this requires gateway-level WhatsApp configuration but the skill itself does not embed external endpoints. The skill no longer auto-creates cron jobs (changelog) and includes validation to prevent persona path traversal. Overall the runtime instructions are scoped to the skill's purpose, though you should review scripts that modify cron jobs (scripts/sync_reminders.ts, scripts/run_reminder.ts) before enabling them.
ℹ 安装机制
There is no remote download-from-arbitrary-URL; installation is documented as cloning the GitHub repo and running npm install. Dependencies indicated (chrono-node, string-similarity, commander, tsx, @napi-rs/canvas) match the implemented features (NLP, CLI, canvas rendering). Using native canvas (@napi-rs/canvas) requires native build tooling but is proportionate to the canvas dashboard feature. The repository contains an INSTALL.md and package.json, so treat this as a code-backed skill (not instruction-only) despite registry metadata saying otherwise.
✓ 凭证需求
The skill declares no required environment variables or external credentials. That aligns with the code: data is stored locally under ~/clawd/habit-flow-data/ and reminders are routed through the gateway's clawdbot cron/WhatsApp channels (which are configured outside the skill). There are no declared requests for unrelated secrets. Note: WhatsApp delivery depends on gateway-level configuration; ensure your gateway's channel credentials are correctly managed separately.
✓ 持久化与权限
always:false and user-invocable:true. The skill reads and writes only to its own data directory (~/clawd/habit-flow-data/) and the skill directory. Cron job creation is opt-in (user must run sync_reminders.ts). It does not request permanent platform-wide privileges or modify other skills' configs. No 'always' or autonomous escalation flags were observed.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.5.42026/1/30
NULL
● 可疑
安装命令
点击复制官方npx clawhub@latest install habit-flow-skill
镜像加速npx clawhub@latest install habit-flow-skill --registry https://cn.longxiaskill.com✓ 镜像可用