Back to skill
Skillv1.0.0
ClawScan security
Pipeworx radio · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 14, 2026, 4:37 PM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent: it simply instructs the agent to query a remote radio index (gateway.pipeworx.io) for station metadata and stream URLs and asks for no credentials or installs.
- Guidance
- This skill appears to only query a third-party API (gateway.pipeworx.io) for radio station metadata and stream URLs and does not request credentials or install code. Before installing, consider: 1) the endpoint is an unknown third-party (no homepage listed) — queries you send (search terms) and returned stream URLs will go through that service, so avoid sending sensitive data; 2) test with non-sensitive queries first to confirm expected behavior; 3) if you prefer a known upstream, compare with official Radio Browser endpoints (e.g., radio-browser.info) or ask the skill author for provenance and a privacy policy. If you need higher assurance, request a homepage/source repo or prefer a skill backed by a known provider.
Review Dimensions
- Purpose & Capability
- okName/description match the SKILL.md: the skill is a discovery frontend that issues JSON-RPC calls to a remote radio database. Nothing requested (no binaries, env vars, or installs) is out of scope for a lookup/discovery service.
- Instruction Scope
- noteInstructions are narrow: example shows a JSON-RPC POST to https://gateway.pipeworx.io/radio/mcp and a small config snippet. The skill will send user search queries to that third-party endpoint; it does not instruct reading local files or other env vars. Note: user query contents (search terms) will be transmitted to the remote service.
- Install Mechanism
- okNo install spec and no code files — instruction-only. This minimizes disk/write risk.
- Credentials
- okNo environment variables, credentials, or config paths are requested. This is proportional for a read-only discovery service.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. The skill does not request elevated or permanent agent privileges. Autonomous invocation is permitted by default on the platform but is not excessive here.