← 返回 Skills 市场
Scribe
作者
austindixson
· GitHub ↗
· v1.0.0
422
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install scribe
功能描述
Scans OpenClaw logs, config files, chat history, cursor history, behavior, desires, tastes, and drafts to take comprehensive daily and weekly notes with summ...
安全使用建议
Before installing or running Scribe: (1) Inspect scripts/scribe.py fully for any network activity (HTTP requests, sockets, remote endpoints, encoded/obfuscated strings) or subprocess calls that could exfiltrate data. Grep for modules like requests, urllib, socket, subprocess, or any hard-coded URLs. (2) Review your ~/.openclaw/openclaw.json and Cursor DBs to confirm they don't contain secrets you don't want aggregated; if they do, remove or rotate them first. (3) Run the script in an isolated environment or with --openclaw-home pointing to a copy of your data to see what it reads and what it writes. (4) If you plan to automate via cron, prefer running against a sanitized copy or explicitly restrict the openclaw-home path. (5) If the repository provenance (author, homepage, repo URL) is not verifiable, treat the included code as untrusted. What would change this assessment: discovering any network exfiltration (hard-coded remote endpoints, encrypted outbound traffic, or subprocesses that call external services) or obfuscated/encoded payloads would raise the severity toward malicious; a trusted upstream repository and an explicit statement that config files do not contain secrets (or that secrets are filtered) would increase confidence toward benign.
功能分析
Type: OpenClaw Skill
Name: scribe
Version: 1.0.0
The skill is classified as suspicious due to its extremely broad access to highly sensitive local user data, including all Cursor IDE chat history (from `~/Library/Application Support/Cursor/User/globalStorage/state.vscdb` and `workspaceStorage/*/state.vscdb`) and a wide range of draft files (e.g., `**/*draft*.txt`, `blog/**/*.md`) within the user's workspace, as implemented in `scripts/scribe.py`. While this extensive data collection is explicitly stated as the skill's purpose in `SKILL.md` and `README.md`, and there is no evidence of data exfiltration or malicious intent in the current code, the sheer volume and sensitivity of the data it processes locally represent a significant privacy risk and a large attack surface. Any future vulnerability in the skill or the OpenClaw environment could lead to severe consequences given the aggregated sensitive information.
能力评估
Purpose & Capability
The name/description (Scribe — comprehensive note-taking) matches the actions the skill performs: scanning logs, openclaw.json, Cursor SQLite DBs, memory and draft files and producing Markdown/JSON notes. There are no unrelated environment variables or external binaries declared, so capability requests are broadly coherent with the stated purpose.
Instruction Scope
SKILL.md explicitly instructs the agent (and the user) to read many user-local files and directories (e.g., ~/.openclaw/logs/*.log, ~/.openclaw/openclaw.json, Cursor's state.vscdb in the user Library path, workspace memory and drafts). While this is consistent with producing comprehensive notes, those instructions allow aggregation of very sensitive data (configuration that may contain tokens, chat transcripts, draft content, memory/behavior files). The SKILL.md also suggests cron integration which would automate repeated access to those sources.
Install Mechanism
No install spec is provided (instruction-only skill with a bundled script). That is lower-risk than a remote download/install, but the package includes a local Python script (scripts/scribe.py) that will be executed — there is executable code on disk with no declared provenance (git clone URL in README is a generic placeholder).
Credentials
The skill requires no environment variables, which is good, but it reads configuration files (openclaw.json) and Cursor DBs that commonly contain credentials, API keys, or private conversation history. Requesting broad filesystem access to aggregate these items is proportionate to a 'comprehensive scribe' only if the user expects that degree of access; otherwise it is high-risk. The skill does not declare where (if anywhere) collected data might be sent, so local aggregation could become an exfiltration target if the code is modified.
Persistence & Privilege
The skill does not request always:true and does not declare modifying other skills or system-wide agent settings. It writes output into workspace/Notes/* by design. The README shows an example cron job, but scheduling is optional and not enforced by the skill metadata.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install scribe - 安装完成后,直接呼叫该 Skill 的名称或使用
/scribe触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of the Scribe skill for OpenClaw.
- Automatically scans OpenClaw logs, config files, chat and cursor history, behavior, desires, tastes, drafts, and memory files.
- Generates structured daily and weekly notes in markdown format, including summaries and detailed activity breakdowns.
- Supports command-line options for daily, weekly, both notes, JSON output, and custom OpenClaw home directory.
- Designed for automation (cron job integration) and local-only processing for privacy.
- Requires Python 3.7+, OpenClaw installation, and Cursor IDE for full feature support.
元数据
常见问题
Scribe 是什么?
Scans OpenClaw logs, config files, chat history, cursor history, behavior, desires, tastes, and drafts to take comprehensive daily and weekly notes with summ... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 422 次。
如何安装 Scribe?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install scribe」即可一键安装,无需额外配置。
Scribe 是免费的吗?
是的,Scribe 完全免费(开源免费),可自由下载、安装和使用。
Scribe 支持哪些平台?
Scribe 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Scribe?
由 austindixson(@austindixson)开发并维护,当前版本 v1.0.0。
推荐 Skills