ClawHub

Clockify

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Clockify integration that can read and modify Clockify data through Maton, with no hidden code or installation behavior found.

Install only if you trust Maton as the OAuth proxy and are comfortable giving the agent access to your connected Clockify account. Keep MATON_API_KEY private, select the intended connection when multiple Clockify accounts exist, and carefully approve any create, update, or delete request, especially deletion of billing or time-tracking records.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The security section understates the actual capability surface. It claims scope is limited to time entries, projects, workspaces, clients, and tags, while the same document also exposes task management and OAuth connection management, which can affect account linkage and broader resource control. This can mislead users or downstream agents into granting or using broader privileges than they believe are available.

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Project

```bash
DELETE /clockify/api/v1/workspaces/{workspaceId}/projects/{projectId}
```

**Note:** You cannot delete active projects. Set `archived: true` first.
Confidence
87% confidence
Finding
DELETE /clockify/api/v1/workspaces/{workspaceId}/projects/{projectId}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Client

```bash
DELETE /clockify/api/v1/workspaces/{workspaceId}/clients/{clientId}
```

### Tag Operations
Confidence
87% confidence
Finding
DELETE /clockify/api/v1/workspaces/{workspaceId}/clients/{clientId}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Tag

```bash
DELETE /clockify/api/v1/workspaces/{workspaceId}/tags/{tagId}
```

### Task Operations
Confidence
84% confidence
Finding
DELETE /clockify/api/v1/workspaces/{workspaceId}/tags/{tagId}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Task

```bash
DELETE /clockify/api/v1/workspaces/{workspaceId}/projects/{projectId}/tasks/{taskId}
```

**Note:** You cannot delete active tasks. Set `status: "DONE"` first.
Confidence
86% confidence
Finding
DELETE /clockify/api/v1/workspaces/{workspaceId}/projects/{projectId}/tasks/{taskId}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Time Entry

```bash
DELETE /clockify/api/v1/workspaces/{workspaceId}/time-entries/{timeEntryId}
```

#### Stop Running Timer
Confidence
83% confidence
Finding
DELETE /clockify/api/v1/workspaces/{workspaceId}/time-entries/{timeEntryId}

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal