Skillv1.0.0

ClawScan security

Pipeworx dogceo · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 8, 2026, 6:01 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's stated purpose (using the Dog CEO API for random dog images) is plausible, but the runtime instructions route requests through a third-party pipeworx gateway and the examples/config suggest executing remote tooling (npx mcp-remote), which is an unexpected implementation detail you should be aware of before installing.
Guidance: This pack likely works and is small, but note two things before installing: (1) it does not call the Dog CEO API directly in its examples — it sends requests to a pipeworx gateway (gateway.pipeworx.io). If you care about privacy or trust, verify pipeworx's policies and that you are comfortable routing requests (and any query parameters) through them. (2) the MCP example uses 'npx mcp-remote@latest', which would download and run code from npm; do not run that without review. If you prefer, call the Dog CEO API (https://dog.ceo) directly from curl or your own code instead of using the gateway, and avoid running the npx example unless you trust the package and operator.

Review Dimensions

Purpose & Capability: concernThe description says this is a Dog CEO API pack, but all examples and the MCP config point to a pipeworx gateway (https://gateway.pipeworx.io/dogceo). That means calls will be proxied through a third party rather than going directly to api.dog.ceo, which is not made explicit. Required binaries list only curl, yet the MCP example uses 'npx' (not declared).
Instruction Scope: noteSKILL.md is instruction-only and narrowly scoped to fetching images, listing breeds, and calling a remote MCP endpoint. It does not instruct reading local files or environment variables. However, the agent/tool will send requests and parameters (e.g., breed names) to gateway.pipeworx.io — an external endpoint different from the Dog CEO API; this is a behavioral detail users should expect before installing.
Install Mechanism: okThere is no install spec and no code files, so nothing will be written to disk by default. However, the provided MCP config demonstrates running 'npx mcp-remote@latest', which would download and execute code from npm if a user applied that config; that runtime action is not part of an explicit install spec and may be unexpected.
Credentials: okThe skill requests no environment variables, secrets, or config paths — this is proportionate to its stated purpose of returning image URLs.
Persistence & Privilege: okalways is false and the skill is user-invocable; it does not request permanent presence or attempt to modify other skills or system settings.