n8n Master
ReviewAudited by ClawScan on May 17, 2026.
Overview
Prompt-injection indicators were detected in the submitted artifacts (unicode-control-chars); human review is required before treating this skill as clean.
Before installing, confirm you want a broad n8n workflow/API helper. When using toolbox features, run dry-runs first, inspect generated requests, use least-privilege credentials, keep real secrets out of prompts and workflow JSON, and review any imported workflow before activating it. ClawScan detected prompt-injection indicators (unicode-control-chars), so this skill requires review even though the model response was benign.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
You cannot easily verify the publisher's upstream project from the supplied metadata.
The registry does not provide an upstream source or homepage, so users have less external provenance to verify. No automatic install or malicious behavior is shown.
Source: unknown; Homepage: none
Use normal caution for third-party skills, especially before running helper scripts or using credentials.
If you ask it to test APIs or execute toolbox writes, it may send requests to external services or modify a Feishu Base schema.
The skill documents optional tools that can make network requests or create Feishu fields, but it scopes them to explicit use and recommends dry-runs before writes.
Toolbox scripts are not part of normal answering... api_tester.py... feishu_create_bitable_fields.py... firecrawl_ingest_docs.py... Before write operations, dry-run first unless the user clearly requests execution.
Start with dry-run mode, inspect target URLs and planned requests, and require explicit confirmation for any write/delete/batch operation.
The credentials you provide could grant access to Feishu, Firecrawl, n8n, or other APIs used in generated workflows.
The skill may use service credentials for optional integrations, but it directs use of environment variables and warns against printing secrets.
For Feishu tools, use FEISHU_APP_ID and FEISHU_APP_SECRET from the environment; never print them. For Firecrawl, use FIRECRAWL_API_KEY from the environment; never print it.
Use least-privilege tokens, avoid pasting real secrets into prompts or generated JSON, and rotate keys if they are exposed.
Untrusted or private documents ingested into the skill could affect future responses or be retained in local reference files.
The compiler workflow can persist user-provided or ingested documentation into the skill's future reference corpus, which is useful but can influence later answers.
AI reads the new/changed source files. AI writes or updates wiki cards. AI updates indexes and compilation log.
Only ingest documentation you trust and are allowed to store, review compiled cards before relying on them, and avoid adding private or sensitive pages.