Back to skill
Skillv1.0.0
ClawScan security
Pipeworx usgswater · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 15, 2026, 5:12 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's declared purpose (providing USGS streamflow and gage-height data) matches its instructions and requirements; it is an instruction-only wrapper that queries a third‑party gateway, with no requested credentials or installs — but the gateway is not the official USGS endpoint and the skill's source is unknown, so verify trustworthiness before use.
- Guidance
- This skill appears coherent: it simply calls a third‑party gateway to fetch USGS data and asks for no credentials. Two things to consider before installing: (1) the SKILL.md points to https://gateway.pipeworx.io rather than the official USGS API — requests and returned data will flow through that third party, so evaluate its trustworthiness and privacy policy if you care about where queries go; (2) the skill's source/homepage are unknown, which lowers confidence in long‑term reliability and maintenance. If you need maximum trust, prefer a skill that calls the official USGS endpoints or confirm who operates the pipeworx gateway.
Review Dimensions
- Purpose & Capability
- okThe name/description (USGS streamflow/gage data) align with the instructions, which call an external API to retrieve current and historical site data. The skill requests no unrelated binaries, env vars, or config paths.
- Instruction Scope
- okSKILL.md instructs the agent to call a JSON-RPC endpoint (https://gateway.pipeworx.io/usgswater/mcp) to invoke tools (get_current, search_sites, get_daily). It does not instruct reading local files, accessing unrelated environment variables, or sending data to unexpected endpoints beyond the documented gateway.
- Install Mechanism
- okNo install spec or code files are present (instruction-only), so nothing is written to disk or installed by the skill.
- Credentials
- okNo environment variables, credentials, or config paths are required. The lack of secret requests is proportional to the stated read-only data retrieval purpose.
- Persistence & Privilege
- okalways is false and the skill does not request persistent or elevated platform privileges. Autonomous invocation is allowed by default but is not combined with other concerning privileges.