Back to skill
Skillv1.0.0
ClawScan security
Pipeworx universities · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 15, 2026, 5:12 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's behavior is coherent with its description (it calls an external Pipeworx gateway to search universities) but the source is unknown and using the remote gateway means user queries are sent to a third party — consider privacy before use.
- Guidance
- This skill does what it says: it sends your search requests to an external Pipeworx gateway and returns results. Before installing: (1) don't send sensitive or confidential data through it — queries are transmitted to a third party; (2) note the author/source is unknown and there is no homepage—if you need higher assurance ask for source code or a known publisher; (3) verify gateway.pipeworx.io (TLS cert, operator) if you must use it; (4) if you need an offline or self-hosted solution, avoid this skill or substitute a trusted data provider.
Review Dimensions
- Purpose & Capability
- okThe name/description (search universities by name/country and return names, locations, domains, URLs) matches the instructions which call a remote universities API at gateway.pipeworx.io. No unrelated environment variables, binaries, or installs are requested. Note: the package/source is listed as unknown and there's no homepage, which reduces attribution/trust.
- Instruction Scope
- noteSKILL.md only instructs making JSON-RPC POST calls to https://gateway.pipeworx.io/universities/mcp with search parameters; it does not instruct reading local files or environment variables. However, all query text and any user-provided input will be transmitted to a third-party endpoint, which is a privacy concern (possible exfiltration of sensitive query content).
- Install Mechanism
- okNo install spec and no code files — this is instruction-only, so nothing is written to disk or installed by the skill itself.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths. This is proportionate for a read-only lookup API.
- Persistence & Privilege
- okalways is false and model invocation is allowed (platform default). The skill does not request persistent/system privileges or modify other skills/configuration.