Cognito Forms
Security checks across malware telemetry and agentic risk
Overview
This is a coherent Cognito Forms integration, but it grants real access to forms data through Maton OAuth, including creating, updating, and deleting entries.
Use this skill only if you intend to connect Cognito Forms through Maton. Keep the MATON_API_KEY private, confirm the selected connection when multiple accounts exist, and carefully review any create, update, delete, document, or file retrieval request before approving it.
VirusTotal
63/63 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If approved, the agent could change or delete Cognito Forms submissions in the connected account.
The skill can perform high-impact mutations such as creating, updating, and deleting form entries, but the artifact also requires explicit user approval before write operations.
Use this skill when users want to create, read, update, or delete form entries... **All write operations require explicit user approval.**
Approve write or delete operations only after verifying the form, entry ID, connection, and intended effect.
Anyone with the Maton API key or active connection may be able to access the connected Cognito Forms resources allowed by that connection.
The skill depends on a Maton API key and delegated OAuth access to the user's Cognito Forms account, which is expected for this integration but sensitive.
All requests require the Maton API key in the Authorization header... Maton proxies requests to `www.cognitoforms.com` and automatically injects your OAuth token.
Keep MATON_API_KEY private, use the intended Maton connection, and revoke unused OAuth connections.
Form submissions, uploaded files, documents, and account metadata may transit through Maton's proxy service.
Requests and responses for forms, entries, documents, and files pass through the Maton gateway before reaching Cognito Forms.
Base URL `https://api.maton.ai/cognito-forms/{native-api-path}`... Maton proxies requests to `www.cognitoforms.com`Install only if you trust Maton to handle Cognito Forms data and avoid retrieving unnecessary sensitive submissions or files.