Skillv1.0.0

ClawScan security

Pipeworx gutendex · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 8, 2026, 8:23 PM

Verdict: Benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill is an instruction-only wrapper around a remote Gutendex gateway and is internally consistent with its stated purpose, with minor implementation notes you should be aware of.
Guidance: This skill appears to do what it says: it queries Project Gutenberg content via a Pipeworx-hosted Gutendex gateway. Before installing, consider: (1) privacy: your search queries (and any text you submit) will be sent to gateway.pipeworx.io — if you need to keep queries private, use the Gutendex API directly or host your own proxy. (2) tooling: the MCP example uses 'npx' (which downloads and runs code from npm) though 'npx' / Node are not listed as required binaries — only curl is declared. If you plan to use the MCP setup, ensure you trust the package and have Node/npm installed. (3) trust: verify the pipeworx.io domain and homepage if you need an audit trail for where your data will go. No credentials or system files are requested by the skill itself.

Review Dimensions

Purpose & Capability: noteThe skill's name and description match its instructions: it queries Project Gutenberg via a Gutendex wrapper. It declares only curl as a required binary, which is sufficient for the provided curl example. However the MCP example references 'npx' (Node/npm) even though node/npm are not listed in required binaries—this is an implementation/documentation mismatch.
Instruction Scope: noteSKILL.md instructs the agent to POST user queries (JSON-RPC) to https://gateway.pipeworx.io/gutendex/mcp. Sending user text to that external endpoint is expected for a remote search integration, but the doc does not explicitly warn that search queries (possibly containing sensitive content) will be transmitted to pipeworx.io rather than directly to an official Gutendex domain.
Install Mechanism: okNo install spec or code files are included (instruction-only), so nothing is written to disk by default. Note: the MCP config suggests using 'npx mcp-remote@latest', which would fetch and run code from the npm registry if the user follows that advice; the skill itself does not perform that install.
Credentials: okThe skill requests no environment variables, credentials, or config paths. Its functionality (searching Gutendex) normally needs no secrets, so the lack of credential requests is proportionate.
Persistence & Privilege: okalways is false and there are no instructions to modify other skills or global agent settings. The skill does not request persistent privileges or auto-enablement.