ClawHub

AADDYY AI Tools

v1.0.0

Access 100+ AI tools via MCP — image generation, article writing, logo creation, SEO analysis, math solving, video generation. One API key, pay-per-use pricing.

0· 31·0 current·0 all-time
byAdi@adivyas99
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description promise (100+ AI tools via a single MCP-backed API) matches the declared requirements: npx to run an MCP server and a single AADDYY_API_KEY. Requiring npx and an API key is proportional to the stated purpose.
Instruction Scope
SKILL.md instructs the agent to register an MCP server via openclaw mcp set that runs `npx @aaddyy/mcp-server` and to call AADDYY endpoints for tool lists and OpenAPI. It does not instruct the agent to read unrelated local files, other credentials, or arbitrary system paths. It does direct network requests to the provider's domains (backend.aaddyy.com), which is expected for this integration.
Install Mechanism
There is no install spec in the skill bundle, but the runtime uses npx to fetch and run `@aaddyy/mcp-server` from npm. That means code will be pulled and executed at runtime from the npm registry—expected for this type of skill but higher risk than pure instruction-only skills because remote code is executed dynamically. Users should verify the npm package and provider.
Credentials
Only AADDYY_API_KEY is required and declared as the primary credential. That matches the described single-key payer model and is proportionate to the skill's function.
Persistence & Privilege
The skill is not always-on and is user-invocable; it does not request to modify other skills or system-wide settings. The MCP server registration gives the agent new capabilities (normal for MCP integrations) and allows autonomous invocation, which is the platform default and expected here.
Assessment
This skill appears internally consistent, but it pulls and runs an npm package at runtime and lets a third party (aaddyy) dynamically register tools for your agent. Before installing: (1) verify the npm package (@aaddyy/mcp-server) and inspect its source on npm/GitHub; (2) only provide an API key you trust—use a scoped or limited key if possible and avoid reusing high‑privilege credentials; (3) consider running the MCP server in an isolated environment (container) and monitor network activity; (4) be aware some offered tools (e.g., watermark removal) may enable copyright‑sensitive actions—use responsibly; (5) confirm pricing/credit model so automated agent calls can't exhaust your balance unexpectedly.

Like a lobster shell, security has layers — review code before you run it.

latestvk978cf5z68c19aj23ac13pp509845abg

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsnpx
EnvAADDYY_API_KEY
Primary envAADDYY_API_KEY

Comments