← Back to Skills Marketplace
nitsujy

Todolist Md Clawdbot

by NitsujY · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
735
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install todolist-md-clawdbot
Description
Read, summarize, propose edits, and write back changes for Markdown todo files using line-stable bot markers without altering task identity.
Usage Guidance
This skill implements a Drive-backed Markdown todo editor and will need Google Drive credentials (access token or CLIENT_ID/CLIENT_SECRET + auth flow) and, optionally, gog CLI credentials. Before installing: (1) understand you'll need to provide Drive/gog credentials and may need to run sudo for the gog CLI; (2) review and accept that the skill will store a refresh token under /root/clawd/.secrets (persistent secret on disk); (3) consider running it in an isolated account/container with least privilege, or modify the scripts to use a dedicated service account and a narrower OAuth scope; (4) verify the metadata mismatch (no declared env/config) with the publisher and ensure you supply only minimal credentials needed; and (5) inspect the scripts yourself (or have someone you trust do so) before granting access to sensitive accounts.
Capability Analysis
Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill The skill bundle is classified as suspicious due to several risky capabilities and potential vulnerabilities, though without clear evidence of intentional malicious behavior. The `SKILL.md` defines `<!-- bot: ... -->` markers as instructions for the AI agent, creating a prompt injection surface. The `todolist_review_drive.py` script inserts `root_folder_id` and `model` values directly into `<!-- bot: last_review -->` markers; if these values are user-controlled and untrusted, they could be exploited for prompt injection. Additionally, both `todolist_drive_folder_agent.mjs` and `todolist_review_drive.py` execute external `gog` commands using `sudo -u ubuntu`, indicating the agent has `sudo` capabilities and executes commands as a different user. While argument passing is robust against shell injection, the use of `sudo` and external binaries represents a powerful primitive that, if misconfigured or if the `gog` binary itself were compromised, could lead to unauthorized execution. There is no evidence of data exfiltration to unauthorized endpoints, backdoors, or obfuscation.
Capability Assessment
Purpose & Capability
The skill's name/description (Markdown todo editing) align with the included scripts which implement Google Drive access and in-file bot markers. However, the package metadata lists no required environment variables or config paths, while the scripts clearly require Drive OAuth tokens (ACCESS_TOKEN/REFRESH_TOKEN/CLIENT_ID/CLIENT_SECRET) and/or a gog account — this mismatch between declared requirements and actual code is notable.
Instruction Scope
SKILL.md rules and conventions are narrowly scoped to reading/writing Markdown with bot markers and minimizing LLM calls, which the code generally follows. But the runtime instructions and scripts reference and/or perform actions outside that narrow scope: reading /root/clawd/.secrets/gog.env, storing a refresh token file under /root/clawd/.secrets, and invoking sudo to run the 'gog' CLI as the 'ubuntu' user. Those filesystem and privileged interactions are not called out in the top-level metadata or prominently in SKILL.md.
Install Mechanism
There is no external install/download step (instruction-only/install-less). The skill bundles local scripts (Node/Python) and does not fetch arbitrary code from remote URLs during install. Risk from installation is therefore low; runtime risk comes from network calls the scripts make.
Credentials
The scripts expect Google Drive OAuth credentials (ACCESS_TOKEN, REFRESH_TOKEN, CLIENT_ID, CLIENT_SECRET, REFRESH_TOKEN_FILE) and gog-related credentials (GOG_ACCOUNT, GOG_KEYRING_PASSWORD, GOG_BIN). Those sensitive variables and a refresh token file are necessary for Drive access but were not declared in registry metadata. The skill persists tokens to disk under /root/clawd/.secrets, which is persistent and sensitive — proportionate for Drive integration but requires explicit user awareness and least-privilege configuration.
Persistence & Privilege
always:false (good), but the scripts persist refresh tokens to /root/clawd/.secrets/todolist_drive_oauth.json and expect a gog.env secrets file there. They also run sudo to call gog as another user. Persisting tokens and invoking sudo increase blast radius if the host or skill is compromised; these behaviors are not surfaced in the top-level metadata.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install todolist-md-clawdbot
  3. After installation, invoke the skill by name or use /todolist-md-clawdbot
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
todolist-md-clawdbot 1.0.0 — Initial release - Provides bot-assisted review and editing of todolist-md Markdown todo files. - Uses only line-stable <!-- bot: ... --> markers for any write-back changes. - Integrates with storage backends like Google Drive, local folders, or S3, respecting file identity and change detection. - Ensures LLM operations only on changed files, reducing token usage and minimizing costs. - Allows opt-in/opt-out file-level control via config file or in-file marker. - Never marks tasks as complete without explicit user confirmation.
Metadata
Slug todolist-md-clawdbot
Version 1.0.0
License
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Todolist Md Clawdbot?

Read, summarize, propose edits, and write back changes for Markdown todo files using line-stable bot markers without altering task identity. It is an AI Agent Skill for Claude Code / OpenClaw, with 735 downloads so far.

How do I install Todolist Md Clawdbot?

Run "/install todolist-md-clawdbot" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Todolist Md Clawdbot free?

Yes, Todolist Md Clawdbot is completely free (open-source). You can download, install and use it at no cost.

Which platforms does Todolist Md Clawdbot support?

Todolist Md Clawdbot is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Todolist Md Clawdbot?

It is built and maintained by NitsujY (@nitsujy); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463942 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259883 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200739 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191401 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190375 · by oswalpalash

💬 Comments