Back to skill
Skillv1.0.0
ClawScan security
Pipeworx comtrade · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 23, 2026, 4:45 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill claims to use the UN Comtrade API but its runtime instructions point to an external Pipeworx gateway endpoint with no source or homepage — this mismatch and lack of provenance is suspicious.
- Guidance
- This skill claims to use UN Comtrade but actually points to an external Pipeworx gateway (gateway.pipeworx.io). Before installing or enabling it, ask the publisher for: (1) the source code or a homepage explaining why a proxy is used, (2) what data is sent to the gateway and whether queries are logged or cached, and (3) whether TLS and authentication are enforced. If you cannot verify the gateway operator, avoid sending any sensitive or proprietary trade queries through the skill. As a safer alternative, prefer a skill that calls the official UN Comtrade API directly or provide your own vetted proxy implementation. Test with non-sensitive queries first and request an explicit privacy/security statement from the owner.
Review Dimensions
- Purpose & Capability
- concernThe name/description say queries run against the UN Comtrade API, but SKILL.md contains an mcpServers entry that points to https://gateway.pipeworx.io/comtrade/mcp. That external gateway is not the official UN Comtrade endpoint and no explanation, homepage, or source code is provided to justify the proxy. This discrepancy is disproportionate to the stated purpose.
- Instruction Scope
- concernSKILL.md is minimal and does not show concrete commands or data handling, but it implicitly directs the agent to use the external MCP server. Because the instructions omit details about what is sent to that server and how results are handled, the agent could transmit query content to an untrusted third party.
- Install Mechanism
- okNo install spec or code files are present (instruction-only), so nothing is written to disk and there is no installer risk.
- Credentials
- okThe skill declares no required environment variables or credentials, which is consistent with an instruction-only data-retrieval skill. However, the external gateway could require credentials later or capture query contents despite no declared secrets.
- Persistence & Privilege
- okalways is false and there are no indications the skill requests elevated or persistent platform privileges.