Skillv1.0.4

ClawScan security

MrScraper · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 4, 2026, 6:04 AM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is internally consistent with its stated purpose (web scraping via the MrScraper API) and only requests a single API token, but there is a minor security concern: the unblocker endpoint uses a query-parameter token (can be leaked in logs/referrers) and the service's 'unblockable' capabilities mean you should consider legal/terms-of-use risks before using it.
Guidance: This skill appears to do what it says: it calls MrScraper APIs and only needs an API token. Before installing, consider the following: (1) Tokens in URL query parameters are easy to leak — prefer using server-side requests and avoid putting the token in logs or including unblocker URLs in content that may be shared; (2) 'Unblocker' and IP-rotation features can enable evasion of site protections — ensure your use complies with target sites' terms of service and the law; (3) Follow least-privilege: create tokens with limited scope and expiration, store them in a secret manager, and rotate regularly; (4) Verify the vendor (mrscraper.com) and support email before trusting a production token; (5) If you need stronger assurance, request the vendor's API documentation or an allowlist of exact endpoints and consider reviewing network traffic in a controlled environment.

Purpose & Capability: okName, description, declared network hosts, and required environment variable (MRSCRAPER_API_TOKEN) align with an API-only scraping service. The skill is instruction-only and does not request unrelated credentials or system access.
Instruction Scope: noteSKILL.md instructs the agent to perform direct HTTPS requests to MrScraper hosts and to use the API token. It does not direct the agent to read local files or other environment variables. However, the unblocker endpoint requires the token as a URL query parameter — this is an insecure pattern (tokens in URLs can be logged, cached, leaked via referrers) and the doc itself warns about token exposure.
Install Mechanism: okNo install spec and no bundled code — instruction-only skill. This minimizes on-disk footprint and is proportional to an API-only integration.
Credentials: okOnly a single API token (MRSCRAPER_API_TOKEN) is required and declared as the primary credential, which is appropriate for a hosted scraping API. There are no additional unrelated secrets requested.
Persistence & Privilege: okThe skill does not request always:true, does not declare background jobs or hidden persistence, and does not attempt to modify other skill/system settings. Autonomous invocation is allowed (platform default) but not combined with elevated persistence.