← 返回 Skills 市场
npmisantosh

Task System

作者 npmisantosh · GitHub ↗ · v1.0.1
cross-platform ⚠ suspicious
1807
总下载
1
收藏
11
当前安装
2
版本数
在 OpenClaw 中安装
/install task-system
功能描述
Manage tasks with automatic creation, SQLite tracking, heartbeat updates, notifications, stuck task detection, and recovery in a complete lifecycle system.
安全使用建议
This skill appears to implement a simple local task tracker and is internally consistent, but take these precautions before installing or enabling it: - Inspect install.sh and DO NOT run it blindly. It will append or write to ~/.bashrc or ~/.bashrc.d and create a symlink in ~/.local/bin. Back up your shell config first. - The scripts build SQL by concatenating user-supplied values. An attacker (or a malformed ID/notes string) could inject extra SQL. Before using in production, modify the scripts to validate inputs (e.g., ensure TASK_ID matches ^[0-9]+$) and sanitize fields consistently. - Consider running the scripts in a limited environment or container and keep the database under a directory you control; back up the DB before first use. - If you allow an autonomous agent to invoke this skill, be cautious: the agent could call create/heartbeat/complete with attacker-controlled strings. If you cannot audit and harden the scripts, do not grant the agent autonomous use of the skill. If you want, I can produce hardened patch suggestions (e.g., input validation snippets and safer SQL invocation patterns) you can apply to the scripts before installing.
功能分析
Type: OpenClaw Skill Name: task-system Version: 1.0.1 The skill is classified as suspicious due to multiple SQL injection vulnerabilities found across `scripts/complete-task.sh`, `scripts/create-task.sh`, `scripts/heartbeat.sh`, and `scripts/task-system.sh`. Specifically, the `$TASK_ID` variable is directly concatenated into SQL queries without sanitization, allowing for arbitrary SQL command injection (e.g., `1; DROP TABLE tasks;`). While some inputs like `$REQUEST` and `$NOTES` attempt basic single-quote escaping with `sed`, this method is not robust and the direct insertion of `$TASK_ID` represents a critical flaw, enabling potential database manipulation or data loss. There is no evidence of intentional malicious behavior like data exfiltration or backdoors, but these vulnerabilities pose a significant security risk.
能力评估
Purpose & Capability
Name/description match the actual code: CLI scripts implement create, heartbeat, complete, stuck, and status using an on-disk SQLite DB under ~/.openclaw/workspace/databases/tasks.db. No unrelated services, credentials, or binaries are requested.
Instruction Scope
Runtime instructions and scripts operate on a local SQLite DB and the user's home paths only (consistent with purpose), but several commands build SQL statements by interpolating unvalidated user input (e.g., TASK_ID inserted directly into SQL in heartbeat/complete/task-system.sh and other scripts). This allows SQL injection or accidental execution of extra SQL if an attacker or malformed input is passed as an ID or notes parameter.
Install Mechanism
There is no network download; install.sh modifies user shell startup files (~/.bashrc or ~/.bashrc.d) and optionally creates a symlink in ~/.local/bin. Modifying shell config is expected for CLI tools but is persistent and should be reviewed before running.
Credentials
The skill requests no environment variables, credentials, or external config paths beyond storing its SQLite DB under the user's home. This is proportionate to the claimed functionality.
Persistence & Privilege
The skill does not request elevated privileges or always:true. However, install.sh adds PATH changes and a symlink in the user's home which grants persistent CLI availability; combine this persistence with the unvalidated-input issue increases potential blast radius if untrusted inputs are supplied.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install task-system
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /task-system 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Added install.sh script for easier installation. - Updated SKILL.md with installation instructions, author, license, and metadata fields. - Streamlined documentation by removing detailed workflow and protocol sections. - No behavior changes to main scripts or logic.
v1.0.0
1.0
元数据
Slug task-system
版本 1.0.1
许可证
累计安装 12
当前安装数 11
历史版本数 2
常见问题

Task System 是什么?

Manage tasks with automatic creation, SQLite tracking, heartbeat updates, notifications, stuck task detection, and recovery in a complete lifecycle system. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1807 次。

如何安装 Task System?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install task-system」即可一键安装,无需额外配置。

Task System 是免费的吗?

是的,Task System 完全免费(开源免费),可自由下载、安装和使用。

Task System 支持哪些平台?

Task System 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Task System?

由 npmisantosh(@npmisantosh)开发并维护,当前版本 v1.0.1。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论