Back to skill
Skillv1.0.1
ClawScan security
Pilt · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 23, 2026, 7:47 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions are coherent with its stated purpose (calling the Pilt API with an API key); no unexplained privileges or installs are requested, but be mindful of how the API key is stored and trusted endpoints.
- Guidance
- This skill appears to do exactly what it says: call Pilt's gateway using a single API key. Before installing, verify you trust the pilt.ai domain and that the API key you provide has only the permissions you intend. If you follow the SKILL.md instructions to store the key in ~/.openclaw/openclaw.json, ensure that file is access-restricted (correct filesystem permissions) and that you are comfortable with the key being stored in plain JSON. Consider creating a scoped/readonly key in Pilt if available, avoid reusing high-privilege keys, and plan to rotate the key if you stop using the skill. Finally, because the registry metadata showed no homepage but SKILL.md references https://pilt.ai, confirm the correct official project page before submitting secrets.
Review Dimensions
- Purpose & Capability
- okThe name/description (access Pilt fundraising data) aligns with the only required credential (PILT_API_KEY) and the single endpoint (https://pilt.ai/api/v1/gateway). Required binary (curl) is appropriate for the provided curl examples.
- Instruction Scope
- noteSKILL.md only instructs POSTs to pilt.ai with the declared API key and does not ask the agent to read unrelated files or credentials. It does, however, instruct storing the API key in ~/.openclaw/openclaw.json (plain JSON), which is a privacy/security consideration — the skill itself does not require broader file or system access.
- Install Mechanism
- okThis is an instruction-only skill with no install specification or code to download. That minimizes disk-write and supply-chain risk.
- Credentials
- noteOnly PILT_API_KEY is required (declared as primaryEnv), which matches the skill purpose. As a caution: instructions tell users to place the secret in plain JSON under ~/.openclaw/openclaw.json — ensure that file is appropriately protected, and consider using least-privilege keys.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request persistent or system-wide privileges and does not modify other skills' configs. Autonomous invocation is enabled by default but not unusual.