Pipeworx congress
AdvisoryAudited by VirusTotal on Apr 23, 2026.
Overview
Type: OpenClaw Skill Name: pipeworx-congress Version: 1.0.0 The skill provides access to public US Congressional data (bills, members, and votes) via the GovTrack API. The configuration in SKILL.md points to a legitimate-appearing MCP server endpoint at gateway.pipeworx.io, and the functions described are consistent with the stated purpose without any evidence of malicious intent, data exfiltration, or prompt injection.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Congress-related searches or prompts sent through this skill may be visible to the remote MCP provider.
The skill connects the agent to a remote MCP gateway. This is consistent with the stated purpose, but it means user queries are handled by an external service.
"mcpServers": { "congress": { "url": "https://gateway.pipeworx.io/congress/mcp" } }Use it for public or non-sensitive Congress data lookups, and avoid including private information in queries unless you trust the Pipeworx gateway.