oma-scholar

Assists in scholarly research by generating and validating structured research-paper sidecars using the Knows sidecar spec.

Install this skill

75/100

Security score

The oma-scholar skill was audited on May 13, 2026 and we found 9 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 240

Curl to non-GitHub URL

SourceSKILL.md

240	curl -s "https://knows.academy/api/proxy/search?q=..."

medium line 241

Curl to non-GitHub URL

SourceSKILL.md

241	curl -s "https://knows.academy/api/proxy/sidecars/<encoded-id>"

medium line 242

Curl to non-GitHub URL

SourceSKILL.md

242	curl -s "https://knows.academy/api/proxy/partial?record_id=<id>&section=statements"

medium line 243

Curl to non-GitHub URL

SourceSKILL.md

243	curl -s "https://knows.academy/api/proxy/jobs/stats" # platform health

low line 147

External URL reference

SourceSKILL.md

147	14. Remote API has no auth: `https://knows.academy/api/proxy/*` is public; do not invent auth headers

low line 240

External URL reference

SourceSKILL.md

240	curl -s "https://knows.academy/api/proxy/search?q=..."

low line 241

External URL reference

SourceSKILL.md

241	curl -s "https://knows.academy/api/proxy/sidecars/<encoded-id>"

low line 242

External URL reference

SourceSKILL.md

242	curl -s "https://knows.academy/api/proxy/partial?record_id=<id>&section=statements"

low line 243

External URL reference

SourceSKILL.md

243	curl -s "https://knows.academy/api/proxy/jobs/stats" # platform health

Scanned on May 13, 2026

View Security Dashboard

Installation guide →

GitHub Stars 944

Rate this skill

Categoryeducation research

UpdatedMay 20, 2026

openclaw api researcher academic-writer data-analyst education research data analytics

first-fluke/oh-my-agent