OpenProject by altf1be
ReviewAudited by ClawScan on May 18, 2026.
Overview
This is a coherent OpenProject API skill, but it gives the agent broad project-management access using your OpenProject API token.
Install this only if you want the agent to manage your OpenProject instance. Use a dedicated least-privilege API token, keep OP_API_TOKEN out of shared logs or chats, and confirm high-impact actions such as edits, deletes, group changes, custom actions, attachments, and OAuth credential reads before running them.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked with a powerful OpenProject token, the agent could create, edit, or delete business project records.
The skill exposes many OpenProject create, update, and delete operations. This matches the stated CRUD purpose, but these commands can materially change project-management data.
120 commands across 35 entities ... Work Packages | `wp-list`, `wp-create`, `wp-read`, `wp-update`, `wp-delete` ... Groups | `group-list`, `group-read`, `group-create`, `group-update`, `group-delete` ... News | `news-list`, `news-read`, `news-create`, `news-update`, `news-delete`
Use a token/account with only the OpenProject permissions needed, and review any create, update, delete, or custom-action request before running it.
A token with admin or broad project permissions would let the skill perform similarly broad actions in OpenProject.
The skill reads the OpenProject host and API token from environment variables and uses Basic authentication for API calls. This is expected for OpenProject API access, but the token inherits the user's OpenProject permissions.
const host = process.env.OP_HOST;
const apiToken = process.env.OP_API_TOKEN; ... const token = Buffer.from(`apikey:${CFG.apiToken}`).toString('base64');
return `Basic ${token}`;Create a dedicated OpenProject API token with the minimum necessary permissions, avoid sharing it, and rotate it if it may have been exposed.
Running this command could expose sensitive OpenProject OAuth-related credential information to the agent session or logs.
The documented API coverage includes reading OAuth client credentials. This is disclosed, but it is a sensitive administrative capability if the configured OpenProject account is allowed to access it.
`oauth_client_credentials` | oauth-credentials-read | Read OAuth client credentials
Only use OAuth credential commands when necessary, and avoid installing or running this skill with an account that can read secrets unless you intend that access.