← Back to Skills Marketplace
326
Downloads
0
Stars
2
Active Installs
1
Versions
Install in OpenClaw
/install private-knowledge-base
Description
Store, search, and summarize concepts across your PDFs and papers with fast semantic search and cross-document Q&A.
Usage Guidance
This skill appears to do what it says and works only on local files, but consider the following before installing or running it:
- KB metadata stores the absolute source path in index JSON — if you later upload the KB or share it, that may reveal filesystem layout or sensitive directory names. Consider setting KB_ROOT to a dedicated directory and reviewing index JSON files before sharing.
- The scripts will read any file you pass to them; only give them PDFs you trust. They write extracted text under KB_ROOT/docs and metadata under KB_ROOT/index.
- summarize.sh suggests using 'ollama run qwen3.5' (a local model runtime). That step is optional and not enforced by the scripts; if you run it, verify your ollama setup and understand whether that model is local or configured to call an external service.
- The scripts rely on pdftotext or python (pypdf). Installing those packages may be required; install them from well-known sources.
- If you plan to back up or share the KB, review contents for sensitive information (full paths, PII in extracted text) first.
Overall this is internally consistent and low-risk for local use, but be cautious about storing or sharing the generated index and text files.
Capability Analysis
Type: OpenClaw Skill
Name: private-knowledge-base
Version: 1.0.0
The skill bundle contains critical command injection vulnerabilities in `scripts/ingest.sh`. Specifically, the script constructs a Python command string using unquoted shell variables (`$PDF_PATH`), which allows for arbitrary Python code execution if a filename contains single quotes. Furthermore, the script uses unquoted variables within a shell heredoc to generate metadata, enabling command substitution (e.g., via backticks or `$()`) if a filename is maliciously crafted. While these flaws provide a path for Remote Code Execution (RCE), they appear to be unintentional security oversights in a functional document management system rather than intentional malware.
Capability Assessment
Purpose & Capability
Name/description match the included scripts and schema: ingestion, text extraction, simple search, and summarization workflows are implemented by the shell scripts and index schema. No unrelated credentials, binaries, or services are requested.
Instruction Scope
Scripts only read user-supplied PDF files and write extracted text, embeddings folder, and index JSON under KB_ROOT (default ~/kb). Two noteworthy items: (1) metadata stores the full source path in index JSON (may reveal filesystem layout or sensitive path names), and (2) summarize.sh prints a suggested command using 'ollama run qwen3.5' — that is an external model invocation the README suggests but is not enforced by the scripts. Otherwise instructions are scoped to the stated purpose.
Install Mechanism
No install spec — instruction-only with local shell scripts. Scripts rely on common local tools (pdftotext, python3, pypdf) but do not download or execute remote code. This is low-risk relative to other install types.
Credentials
No required environment variables or credentials are declared. An optional KB_ROOT env var is used to choose storage location, which is proportionate. No other secrets or unrelated env vars are requested.
Persistence & Privilege
always:false and user-invocable default. The skill does not request permanent system-wide presence, does not modify other skills' config, and only writes files under the configured KB_ROOT.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install private-knowledge-base - After installation, invoke the skill by name or use
/private-knowledge-base - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of personal knowledge base for PDFs, papers, and documents
- Supports ingestion of single PDFs or entire folders into the knowledge base
- Enables fast semantic search and cross-document Q&A over stored documents
- Provides tools for summarizing concepts across multiple documents and linking related content
- Includes scripts for document ingestion, search, and summarization
- Offers configuration options for KB storage location
Metadata
Frequently Asked Questions
What is Private Knowledge Base?
Store, search, and summarize concepts across your PDFs and papers with fast semantic search and cross-document Q&A. It is an AI Agent Skill for Claude Code / OpenClaw, with 326 downloads so far.
How do I install Private Knowledge Base?
Run "/install private-knowledge-base" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Private Knowledge Base free?
Yes, Private Knowledge Base is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Private Knowledge Base support?
Private Knowledge Base is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Private Knowledge Base?
It is built and maintained by wirec (@wirec-yzx); the current version is v1.0.0.
More Skills