← Back to Skills Marketplace
Task System
by
npmisantosh
· GitHub ↗
· v1.0.1
1807
Downloads
1
Stars
11
Active Installs
2
Versions
Install in OpenClaw
/install task-system
Description
Manage tasks with automatic creation, SQLite tracking, heartbeat updates, notifications, stuck task detection, and recovery in a complete lifecycle system.
Usage Guidance
This skill appears to implement a simple local task tracker and is internally consistent, but take these precautions before installing or enabling it:
- Inspect install.sh and DO NOT run it blindly. It will append or write to ~/.bashrc or ~/.bashrc.d and create a symlink in ~/.local/bin. Back up your shell config first.
- The scripts build SQL by concatenating user-supplied values. An attacker (or a malformed ID/notes string) could inject extra SQL. Before using in production, modify the scripts to validate inputs (e.g., ensure TASK_ID matches ^[0-9]+$) and sanitize fields consistently.
- Consider running the scripts in a limited environment or container and keep the database under a directory you control; back up the DB before first use.
- If you allow an autonomous agent to invoke this skill, be cautious: the agent could call create/heartbeat/complete with attacker-controlled strings. If you cannot audit and harden the scripts, do not grant the agent autonomous use of the skill.
If you want, I can produce hardened patch suggestions (e.g., input validation snippets and safer SQL invocation patterns) you can apply to the scripts before installing.
Capability Analysis
Type: OpenClaw Skill
Name: task-system
Version: 1.0.1
The skill is classified as suspicious due to multiple SQL injection vulnerabilities found across `scripts/complete-task.sh`, `scripts/create-task.sh`, `scripts/heartbeat.sh`, and `scripts/task-system.sh`. Specifically, the `$TASK_ID` variable is directly concatenated into SQL queries without sanitization, allowing for arbitrary SQL command injection (e.g., `1; DROP TABLE tasks;`). While some inputs like `$REQUEST` and `$NOTES` attempt basic single-quote escaping with `sed`, this method is not robust and the direct insertion of `$TASK_ID` represents a critical flaw, enabling potential database manipulation or data loss. There is no evidence of intentional malicious behavior like data exfiltration or backdoors, but these vulnerabilities pose a significant security risk.
Capability Assessment
Purpose & Capability
Name/description match the actual code: CLI scripts implement create, heartbeat, complete, stuck, and status using an on-disk SQLite DB under ~/.openclaw/workspace/databases/tasks.db. No unrelated services, credentials, or binaries are requested.
Instruction Scope
Runtime instructions and scripts operate on a local SQLite DB and the user's home paths only (consistent with purpose), but several commands build SQL statements by interpolating unvalidated user input (e.g., TASK_ID inserted directly into SQL in heartbeat/complete/task-system.sh and other scripts). This allows SQL injection or accidental execution of extra SQL if an attacker or malformed input is passed as an ID or notes parameter.
Install Mechanism
There is no network download; install.sh modifies user shell startup files (~/.bashrc or ~/.bashrc.d) and optionally creates a symlink in ~/.local/bin. Modifying shell config is expected for CLI tools but is persistent and should be reviewed before running.
Credentials
The skill requests no environment variables, credentials, or external config paths beyond storing its SQLite DB under the user's home. This is proportionate to the claimed functionality.
Persistence & Privilege
The skill does not request elevated privileges or always:true. However, install.sh adds PATH changes and a symlink in the user's home which grants persistent CLI availability; combine this persistence with the unvalidated-input issue increases potential blast radius if untrusted inputs are supplied.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install task-system - After installation, invoke the skill by name or use
/task-system - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
- Added install.sh script for easier installation.
- Updated SKILL.md with installation instructions, author, license, and metadata fields.
- Streamlined documentation by removing detailed workflow and protocol sections.
- No behavior changes to main scripts or logic.
v1.0.0
1.0
Metadata
Frequently Asked Questions
What is Task System?
Manage tasks with automatic creation, SQLite tracking, heartbeat updates, notifications, stuck task detection, and recovery in a complete lifecycle system. It is an AI Agent Skill for Claude Code / OpenClaw, with 1807 downloads so far.
How do I install Task System?
Run "/install task-system" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Task System free?
Yes, Task System is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Task System support?
Task System is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Task System?
It is built and maintained by npmisantosh (@npmisantosh); the current version is v1.0.1.
More Skills