← Back to Skills Marketplace
OpenClaw Flomo Skill
by
DoTheWorkNow
· GitHub ↗
· v1.0.0
379
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-flomo-skill
Description
Read and write flomo memos on macOS. Use when user asks to fetch recent flomo notes, search memo text in local flomo cache, or create/write a new memo to flo...
Usage Guidance
This skill appears to do what it says: to work it reads your local flomo desktop data (config.json and IndexedDB) to obtain the access_token and to discover incoming webhook paths, and it calls flomo APIs/webhooks. That access is necessary for functionality but is sensitive: do not share your flomo config.json. Before installing, verify you trust the skill source and review scripts/flomo_tool.py yourself. Note the registry metadata does not declare required binaries (the script invokes curl and strings) or the optional env vars documented in README; ensure you are comfortable giving the script read access to ~/Library/Containers/com.flomoapp.m/... and network access to flomoapp.com. If you prefer tighter control, set FLOMO_ACCESS_TOKEN or FLOMO_CONFIG_PATH to a limited/throwaway token or run the script in a confined environment and inspect its output (it masks webhook URLs when printing).
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-flomo-skill
Version: 1.0.0
The OpenClaw Flomo skill is designed to interact with the local Flomo macOS application, reading its configuration and using its API for memo management. The `scripts/flomo_tool.py` accesses local Flomo application files (`config.json`, `IndexedDB`, `renderer.log`) to retrieve necessary tokens and state, which is transparently documented in `README.md` as part of its security model. Network calls are made to `flomoapp.com` using `curl` via `subprocess.run` with arguments passed as lists, mitigating shell injection risks. User-provided content for memo writing is properly JSON-encoded or URL-encoded. The `SKILL.md` instructions guide the AI agent appropriately, including a positive security practice of masking webhook URLs. There is no evidence of intentional data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, or obfuscation. The capability to specify a webhook URL could be misused by a malicious user, but the skill itself does not exhibit malicious intent.
Capability Assessment
Purpose & Capability
The name/description (read/write flomo memos on macOS) aligns with what the code and docs do: the script reads the local flomo config/IndexedDB and calls flomo APIs or incoming webhook URLs to read/write memos. The declared purpose justifies access to the config and flomo API.
Instruction Scope
SKILL.md instructs running the included Python script. The script reads local files (config.json, IndexedDB .ldb, renderer.log), extracts tokens/entries, and performs network calls to flomo endpoints. Reading the local flomo config and IndexedDB is necessary for the stated features, but these files contain sensitive tokens/webhook paths, so this is notable and should be expected by the user.
Install Mechanism
This is an instruction-only skill with a bundled script; there is no external download or install step. Nothing is being pulled from remote sources at install time.
Credentials
The registry metadata lists no required env vars, but README and the script allow/expect several optional env vars (FLOMO_CONFIG_PATH, FLOMO_ACCESS_TOKEN, FLOMO_API_BASE, etc.). The script will read ~/Library/.../config.json and IndexedDB to obtain access_token and webhook info — this is required for function but is sensitive access (it can expose your flomo access token/webhook). The code also invokes system binaries (curl, strings) though the registry did not declare these requirements.
Persistence & Privilege
The skill does not request always: true, does not modify other skills, and has no install that persists system-wide beyond being copied into the OpenClaw workspace. Autonomous invocation is allowed (platform default) but not combined with other concerning privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-flomo-skill - After installation, invoke the skill by name or use
/openclaw-flomo-skill - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial public release of flomo read/write skill.
Metadata
Frequently Asked Questions
What is OpenClaw Flomo Skill?
Read and write flomo memos on macOS. Use when user asks to fetch recent flomo notes, search memo text in local flomo cache, or create/write a new memo to flo... It is an AI Agent Skill for Claude Code / OpenClaw, with 379 downloads so far.
How do I install OpenClaw Flomo Skill?
Run "/install openclaw-flomo-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Flomo Skill free?
Yes, OpenClaw Flomo Skill is completely free (open-source). You can download, install and use it at no cost.
Which platforms does OpenClaw Flomo Skill support?
OpenClaw Flomo Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Flomo Skill?
It is built and maintained by DoTheWorkNow (@dotheworknow); the current version is v1.0.0.
More Skills