Open WebUI
PassAudited by ClawScan on May 1, 2026.
Overview
This skill appears purpose-aligned for Open WebUI API use, but it uses your Open WebUI API token and can upload files or change model/knowledge resources.
Before installing, verify that this is the Open WebUI integration you want, set OPENWEBUI_URL only to a trusted local or HTTPS remote instance, protect the OPENWEBUI_TOKEN value, and explicitly approve any file upload, large model pull, deletion, or knowledge-base change.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone using this skill should understand that it can act against the configured Open WebUI instance as the token owner.
The CLI reads an Open WebUI API token and sends it as bearer authentication, so actions performed through the skill use the user's Open WebUI authority.
self.token = token or os.getenv("OPENWEBUI_TOKEN") ... "Authorization": f"Bearer {self.token}"Use a trusted Open WebUI URL, avoid passing tokens on the command line when possible, and use the least-privileged or revocable token available.
Careless use could delete or change Open WebUI resources or consume storage/bandwidth, but the documented workflow calls for user confirmation.
The skill includes high-impact operations such as deleting models, pulling large models, deleting knowledge collections, and uploading sensitive files, but it also documents confirmation requirements.
Always confirm before: - Deleting models ... - Pulling large models ... - Deleting knowledge collections ... - Uploading sensitive files
Confirm destructive, costly, or sensitive operations explicitly and review the target model, collection, or file before proceeding.
Uploaded documents may become part of a knowledge base and could be used in future model responses through Open WebUI.
Uploaded files can be processed in the background for RAG, meaning selected documents may be indexed or retained by the Open WebUI instance for later retrieval.
params = {"process": process, "process_in_background": True} ... files = {"file": (path.name, f, "application/octet-stream")}Upload only intended documents, avoid sensitive files unless appropriate, and understand the Open WebUI instance's retention and access controls.
Users may not see all setup and credential expectations from metadata alone.
The registry metadata does not declare provenance, credential requirements, or installation requirements, even though the skill text and CLI expect an Open WebUI token and Python requests.
Source: unknown; Homepage: none; Required env vars: none; Env var declarations: none; Primary credential: none; No install spec
Review SKILL.md and the included script before use, install dependencies from trusted sources, and verify that the Open WebUI token requirement is acceptable.