Back to skill
Skillv1.0.0
ClawScan security
Pipeworx nobel · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 6, 2026, 7:03 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions are consistent with a read-only Nobel Prize lookup service, but it suggests running a remote npm tool (npx mcp-remote) and calls an external gateway which you should review before use.
- Guidance
- This skill appears to do what it says: it issues read-only queries to a Pipeworx Nobel gateway and needs only curl. Before installing or running the suggested npx command, check the mcp-remote npm package and the gateway domain (pipeworx.io) to ensure you trust them, and avoid sending any sensitive or private data through the gateway. If you prefer not to run remote npm packages, use the provided curl examples directly instead of the npx setup.
Review Dimensions
- Purpose & Capability
- okName/description (Nobel Prize lookup) align with the declared requirements: only curl is required and the SKILL.md shows simple JSON-RPC calls to an external Nobel gateway. No unrelated binaries or credentials are requested.
- Instruction Scope
- noteRuntime instructions only show POSTing JSON to https://gateway.pipeworx.io/nobel/mcp (via curl) and providing JSON examples. They do not request local files, environment secrets, or unrelated system access. The SKILL.md also includes a 'setup' snippet that runs npx mcp-remote — see install_mechanism for risk note.
- Install Mechanism
- noteThere is no formal install spec (instruction-only), which is low risk. However the SKILL.md suggests using `npx -y mcp-remote@latest ...` to register an MCP server; invoking npx will download and execute code from the npm registry at runtime. That is common for CLI helpers but increases exposure — verify the mcp-remote package and trustworthiness of the pipeworx gateway before running.
- Credentials
- okNo environment variables, credentials, or config paths are required. The skill's functionality (public Nobel data lookups) doesn't justify requesting secrets — none are requested.
- Persistence & Privilege
- notealways:false and no forced persistence. The setup example shows adding an mcpServers entry to agent config (modifying the agent's config to point at the gateway), which is expected for a remote tool but is a persistent change you should be aware of.