Pipeworx clickup

Security checks across malware telemetry and agentic risk

Overview

This looks like a legitimate ClickUp connector, but it should be reviewed because it routes API-key-backed ClickUp data through a third-party gateway and can create tasks without enough scoping or privacy detail.

Install only if you trust the Pipeworx gateway with your ClickUp API key and workspace data. Use the least-privileged, revocable ClickUp credential available, and review task-creation requests before allowing them in a real workspace.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill directs users to a remote MCP endpoint that will handle ClickUp-backed data, but it does not disclose that task, workspace, and potentially sensitive operational metadata will be transmitted to a third-party network service. This creates a real transparency and data-handling risk because users may invoke the skill assuming local-only processing or without understanding that external infrastructure can observe, log, or retain the data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal