ClawHub

Clio

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Clio integration that can access and change sensitive legal practice data through Maton, with clear user-confirmation instructions for writes.

Install only if you trust Maton with your Clio data and your organization permits a third-party OAuth gateway for legal records. Keep MATON_API_KEY private, use the narrowest Clio permissions available, specify the intended connection when multiple accounts exist, and approve writes or deletes only after checking the exact record IDs and consequences.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (14)

External Transmission

Medium
Category
Data Exfiltration
Content
# List matters
python <<'EOF'
import urllib.request, os, json
req = urllib.request.Request('https://api.maton.ai/clio/api/v4/matters?fields=id,display_number,description,status')
req.add_header('Authorization', f'Bearer {os.environ["MATON_API_KEY"]}')
print(json.dumps(json.load(urllib.request.urlopen(req)), indent=2))
EOF
Confidence
97% confidence
Finding
https://api.maton.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
## Base URL

```
https://api.maton.ai/clio/{native-api-path}
```

The gateway proxies requests to `app.clio.com` and automatically injects your OAuth token. Only the endpoints documented in this skill are supported — always use specific endpoint paths from the API Reference section below rather than constructing arbitrary paths.
Confidence
98% confidence
Finding
https://api.maton.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
python <<'EOF'
import urllib.request, os, json
req = urllib.request.Request('https://api.maton.ai/connections?app=clio&status=ACTIVE')
req.add_header('Authorization', f'Bearer {os.environ["MATON_API_KEY"]}')
print(json.dumps(json.load(urllib.request.urlopen(req)), indent=2))
EOF
Confidence
95% confidence
Finding
https://api.maton.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
python <<'EOF'
import urllib.request, os, json
data = json.dumps({'app': 'clio'}).encode()
req = urllib.request.Request('https://api.maton.ai/connections', data=data, method='POST')
req.add_header('Authorization', f'Bearer {os.environ["MATON_API_KEY"]}')
req.add_header('Content-Type', 'application/json')
print(json.dumps(json.load(urllib.request.urlopen(req)), indent=2))
Confidence
96% confidence
Finding
https://api.maton.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
python <<'EOF'
import urllib.request, os, json
req = urllib.request.Request('https://api.maton.ai/connections/{connection_id}')
req.add_header('Authorization', f'Bearer {os.environ["MATON_API_KEY"]}')
print(json.dumps(json.load(urllib.request.urlopen(req)), indent=2))
EOF
Confidence
94% confidence
Finding
https://api.maton.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
python <<'EOF'
import urllib.request, os, json
req = urllib.request.Request('https://api.maton.ai/connections/{connection_id}', method='DELETE')
req.add_header('Authorization', f'Bearer {os.environ["MATON_API_KEY"]}')
print(json.dumps(json.load(urllib.request.urlopen(req)), indent=2))
EOF
Confidence
93% confidence
Finding
https://api.maton.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
```bash
python <<'EOF'
import urllib.request, os, json
req = urllib.request.Request('https://api.maton.ai/clio/api/v4/matters')
req.add_header('Authorization', f'Bearer {os.environ["MATON_API_KEY"]}')
req.add_header('Maton-Connection', '{connection_id}')
print(json.dumps(json.load(urllib.request.urlopen(req)), indent=2))
Confidence
97% confidence
Finding
https://api.maton.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
```javascript
const response = await fetch(
  'https://api.maton.ai/clio/api/v4/matters?fields=id,display_number,description',
  {
    headers: {
      'Authorization': `Bearer ${process.env.MATON_API_KEY}`
Confidence
95% confidence
Finding
https://api.maton.ai/

External Transmission

Medium
Category
Data Exfiltration
Content
import requests

response = requests.get(
    'https://api.maton.ai/clio/api/v4/matters',
    headers={'Authorization': f'Bearer {os.environ["MATON_API_KEY"]}'},
    params={'fields': 'id,display_number,description'}
)
Confidence
95% confidence
Finding
https://api.maton.ai/

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Matter

```bash
DELETE /clio/api/v4/matters/{id}
```

### Contacts
Confidence
96% confidence
Finding
DELETE /clio/api/v4/matters/{id}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Contact

```bash
DELETE /clio/api/v4/contacts/{id}
```

### Activities
Confidence
95% confidence
Finding
DELETE /clio/api/v4/contacts/{id}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Activity

```bash
DELETE /clio/api/v4/activities/{id}
```

### Tasks
Confidence
93% confidence
Finding
DELETE /clio/api/v4/activities/{id}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Task

```bash
DELETE /clio/api/v4/tasks/{id}
```

### Calendar Entries
Confidence
94% confidence
Finding
DELETE /clio/api/v4/tasks/{id}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Calendar Entry

```bash
DELETE /clio/api/v4/calendar_entries/{id}
```

### Documents
Confidence
94% confidence
Finding
DELETE /clio/api/v4/calendar_entries/{id}

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal