Confluence
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If approved, the agent could modify or delete Confluence pages, comments, attachments, or related workspace content.
The skill can perform write and delete actions against Confluence content, which is powerful but directly matches the declared purpose.
Use this skill when users want to create, read, update, or delete Confluence content, manage spaces, or work with comments and attachments.
Only approve write or delete actions after checking the exact Confluence site, resource, and intended change.
Whoever can use this skill with the API key may be able to access the connected Confluence account according to its OAuth permissions.
The skill requires a Maton API key and uses managed OAuth to access a connected Confluence account, which is expected but sensitive delegated authority.
All requests require the Maton API key in the Authorization header: Authorization: Bearer $MATON_API_KEY
Use a properly scoped Maton/Confluence connection, protect the MATON_API_KEY, and revoke unused connections.
Confluence content and metadata requested by the agent may be handled by the Maton API gateway as part of the integration.
The documented base URL routes Confluence API calls through Maton's gateway, so Confluence requests and responses may pass through that third-party service.
https://api.maton.ai/confluence/{atlassian-api-path}Review Maton's trust, privacy, and access policies before connecting sensitive Confluence workspaces.