← Back to Skills Marketplace
1071
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install vikunja-kanban
Description
Manage Vikunja kanban boards via API to read, create, move, and complete tasks across predefined buckets with integrated cron sync.
Usage Guidance
Before installing or using this skill:
- Treat the VIKUNJA_TOKEN as sensitive. The scripts expect it but the registry metadata does not declare it — the token is long-lived and has wide permissions. Create a least-privilege token (narrow permissions, shorter expiry) and do not reuse high-privilege tokens.
- Inspect and update the scripts to point VIKUNJA_URL to your own Vikunja instance (the included scripts currently hardcode https://kanban.pigpen.haus). Do not use that remote host unless you explicitly trust and control it.
- Remove any hardcoded identifiers (PROJECT_ID, VIEW_ID, BUCKET IDs) or confirm they match your environment. Hardcoded IDs may perform operations in an unintended project.
- Avoid storing the token in the repository. Keep secrets/vikunja.env locally in a secure secrets store and ensure it’s gitignored.
- The SKILL.md suggests editing the PostgreSQL DB to change permissions — this is an out-of-band, high-risk operation. Prefer using the API or proper admin procedures; do not run SQL provided by third-party skills unless you fully trust the source and understand the DB schema and implications.
- If you need stronger assurance, ask the publisher for: (1) an explanation why metadata omits required env vars, (2) a configurable script variant that reads VIKUNJA_URL from env, and (3) confirmation who controls kanban.pigpen.haus. Without those fixes, treat the skill as suspicious and do not supply production credentials.
Capability Analysis
Type: OpenClaw Skill
Name: vikunja-kanban
Version: 1.1.0
The skill is classified as suspicious primarily due to a critical prompt injection vulnerability in `SKILL.md`. The documentation provides a 'workaround' that instructs the AI agent to execute direct SQL commands (`UPDATE users_projects SET permission = 2 ...`) for privilege escalation, which is a severe security risk if the agent has database access. Additionally, all shell scripts (`scripts/*.sh`) use `curl -sk`, disabling SSL certificate validation and making API communication vulnerable to Man-in-the-Middle attacks. The `scripts/vikunja-add-task.sh` script also directly inserts user-supplied arguments into a JSON payload without proper escaping, creating a JSON injection vulnerability. The hardcoded API endpoint `https://kanban.pigpen.haus` is noted as an IOC.
Capability Assessment
Purpose & Capability
The scripts and SKILL.md implement expected kanban actions (list/create/move/complete). However metadata claims no required env vars/credentials while every script requires a VIKUNJA_TOKEN. Also the scripts hardcode VIKUNJA_URL to https://kanban.pigpen.haus instead of using a configurable URL as the documentation implies. These mismatches between declared requirements and actual behavior are problematic.
Instruction Scope
Runtime instructions tell the agent to run included shell scripts which call the Vikunja API — this is within scope. But SKILL.md also recommends a direct PostgreSQL workaround (UPDATE users_projects ...) to change permissions, which requires database access outside the kanban API surface and is beyond typical skill scope. The skill also documents storing credentials in secrets/vikunja.env but does not declare them in metadata.
Install Mechanism
This is an instruction-only skill with bundled shell scripts; there is no install spec, no downloads, and nothing will be written to disk by an installer beyond the provided files. Risk from install mechanism itself is low.
Credentials
The scripts require a long-lived VIKUNJA_TOKEN with broad tasks+projects permissions (read_all, update, create, delete). That level of access is functionally sufficient for the described operations but is high privilege and long-lived (expires 2030). Metadata fails to declare this required credential and the scripts hardcode VIKUNJA_URL to a third-party host, which could expose that token to an external service you may not control.
Persistence & Privilege
The skill is not always-enabled and does not request persistent system privileges or modify other skills/configs. It does not perform autonomous or background persistence beyond using the provided scripts.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install vikunja-kanban - After installation, invoke the skill by name or use
/vikunja-kanban - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
Add API bugs/gotchas docs, user management notes, project sharing workarounds
v1.0.0
Initial release: status board, task CRUD, heartbeat integration
Metadata
Frequently Asked Questions
What is Vikunja Kanban?
Manage Vikunja kanban boards via API to read, create, move, and complete tasks across predefined buckets with integrated cron sync. It is an AI Agent Skill for Claude Code / OpenClaw, with 1071 downloads so far.
How do I install Vikunja Kanban?
Run "/install vikunja-kanban" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Vikunja Kanban free?
Yes, Vikunja Kanban is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Vikunja Kanban support?
Vikunja Kanban is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Vikunja Kanban?
It is built and maintained by shad0wca7 (@shad0wca7); the current version is v1.1.0.
More Skills