← Back to Skills Marketplace

Zettelkasten note tool

Name: Zettelkasten note tool
Author: goog

by Jay · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

107

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install znote

Description

Create, manage, and operate a Zettelkasten slip-box note system using the zk.py CLI script. Use this skill whenever a user wants to build or use a Zettelkast...

Usage Guidance

This skill appears to do what it says: manage a local Zettelkasten vault and needs only optional ZK_VAULT and EDITOR environment variables. Before installing or running it: - Review the script yourself (it is provided) and run it from a user account you control. The code is local-file oriented and does not phone home. - Be cautious with the EDITOR environment variable: the script uses os.system(f'{editor} "{path}"'). If EDITOR is set to a malicious string (or contains shell metacharacters), that could execute undesired shell commands. Prefer setting EDITOR to a trusted program (e.g., vim, nano) or modify the script to use subprocess.run([...], shell=False). - Be mindful of ZK_VAULT: if you override the vault path, the tool will scan and read all .md files under that path. Don’t point it at directories containing sensitive files. - If you plan to allow autonomous invocation by an agent, consider whether automatic file creation/editing is acceptable; you can require explicit user invocation instead. - If you want extra safety, run the script in a confined environment (different user account, container, or VM) until you’re comfortable with behavior.

Capability Analysis

Type: OpenClaw Skill Name: znote Version: 1.0.0 The znote skill provides a functional Zettelkasten note-taking CLI tool. However, the script 'scripts/zk.py' contains a shell injection vulnerability in the '_open_in_editor' function, which uses 'os.system()' to execute a command string constructed from the 'EDITOR' environment variable and a file path. While the file paths are sanitized using a slugification function, the reliance on 'os.system' for executing external commands is a high-risk practice that could be exploited if the environment is compromised. No evidence of intentional malice, data exfiltration, or prompt injection was found.

Capability Assessment

✓ Purpose & Capability

Name/description match the provided code and instructions: a single-file Python CLI to create and manage a local Zettelkasten vault. No unrelated binaries, env vars, or network endpoints are requested.

ℹ Instruction Scope

SKILL.md and the CLI operate locally on a vault (default ~/Zettelkasten) and instruct the agent to deliver the script to the user. The runtime instructions do not direct data to external endpoints or request unrelated files. Note: the script reads all .md files under the vault and opens an editor via os.system, which executes a shell command — see user guidance.

✓ Install Mechanism

No install spec; this is instruction-only with a bundled script file. No downloads or third-party package installs are performed by the skill itself.

✓ Credentials

Only optional environment variables are used (ZK_VAULT to set vault location and EDITOR to open files). These are appropriate and proportional to a local note-management tool; no credentials or unrelated secrets are requested.

✓ Persistence & Privilege

always:false and user-invocable:true. The skill writes files to the user-specified vault (normal for this purpose). It does not modify other skills or global agent configuration.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install znote
After installation, invoke the skill by name or use /znote
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.0

- Initial release of znote: a Python CLI tool to create and manage a Zettelkasten slip-box note system. - Implements full Zettelkasten workflow including fleeting, literature, permanent notes, and Maps of Content. - Provides commands for inbox processing, note linking, orphan finding, map generation, full-text search, and stats. - Uses Markdown files compatible with Obsidian, with double-bracket wiki-linking. - No dependencies beyond Python 3.8+; supports custom vault locations and editors via environment variables. - Outputs `zk.py` and `README.md` for quick setup and reference.

Metadata

Slug znote

Version 1.0.0

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is Zettelkasten note tool?

Create, manage, and operate a Zettelkasten slip-box note system using the zk.py CLI script. Use this skill whenever a user wants to build or use a Zettelkast... It is an AI Agent Skill for Claude Code / OpenClaw, with 107 downloads so far.

How do I install Zettelkasten note tool?

Run "/install znote" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Zettelkasten note tool free?

Yes, Zettelkasten note tool is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Zettelkasten note tool support?

Zettelkasten note tool is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Zettelkasten note tool?

It is built and maintained by Jay (@goog); the current version is v1.0.0.

More Skills