v1.0.1

Facebook Page

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 12:57 AM.

Analysis

This appears to be a legitimate Facebook Page API integration, but it can access OAuth-protected Page data and perform public or destructive Page actions if the user approves them.

GuidanceUse this skill only if you trust Maton and need Facebook Page API access. Keep MATON_API_KEY private, use the Maton-Connection header when multiple Facebook connections exist, carefully approve any public or destructive Page action, and revoke OAuth connections you no longer need.

Findings (6)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityMediumConfidenceHighStatusNote

SKILL.md

**All write operations require explicit user approval.** Before publishing posts, uploading photos, posting comments, or deleting content, confirm the target page, resource, and intended effect with the user.

The skill exposes write, publish, upload, comment, and delete operations against Facebook Pages. The approval instruction is a meaningful boundary, but users should notice that the available API actions can affect public Page content.

User impactIf approved incorrectly, the agent could publish, comment, upload, or delete content on a connected Facebook Page.

RecommendationApprove write actions only after checking the Page, resource ID, content, and expected effect.

Agentic Supply Chain Vulnerabilities

SeverityInfoConfidenceMediumStatusNote

metadata

Source: unknown; Homepage: https://maton.ai

The registry metadata does not provide a source repository, while the skill relies on the Maton hosted API service. There is no local install or code dependency shown, so this is a provenance notice rather than a material supply-chain concern.

User impactUsers are trusting the hosted Maton service and registry package identity rather than inspectable local source code.

RecommendationInstall only if you trust the listed provider and Maton account/OAuth management flow.

Unexpected Code Execution

SeverityLowConfidenceHighStatusNote

SKILL.md

python <<'EOF'
import urllib.request, os, json
req = urllib.request.Request('https://api.maton.ai/facebook-page/v25.0/me/accounts?fields=id,name,category,fan_count,followers_count')

The documentation includes user-run Python snippets that make HTTPS API requests. This is purpose-aligned for an instruction-only API skill and does not show hidden, automatic, or obfuscated execution.

User impactRunning the examples will execute local Python code and send API requests using the configured Maton API key.

RecommendationReview commands before running them and avoid pasting credentials directly into shared terminals or logs.

Cascading Failures

SeverityMediumConfidenceHighStatusNote

SKILL.md

**Publishing posts and comments are publicly visible.** Always confirm post content and target page with the user before publishing, as these actions are immediately visible to the page's audience.

A mistaken publish or comment action can propagate immediately to a public Page audience. The skill documents this and requires confirmation, reducing but not eliminating impact.

User impactAn incorrect approval could expose unintended content publicly or affect audience engagement.

RecommendationUse draft/review workflows for public content and confirm the exact Page, audience, and content before publishing.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityMediumConfidenceHighStatusNote

SKILL.md

Access the Facebook Graph API with managed OAuth authentication. ... Authorization: Bearer $MATON_API_KEY

The skill requires a Maton API key and OAuth-backed access to a Facebook Page account. This is expected for the integration, but it gives the skill authority over connected Page resources.

User impactAnyone or any agent action using the configured key and connection may be able to access or manage the connected Facebook Page within the granted permissions.

RecommendationUse the least-privileged Facebook/Maton connection available, keep MATON_API_KEY private, and revoke unused connections.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityMediumConfidenceHighStatusNote

SKILL.md

Maton proxies requests to `graph.facebook.com` and automatically injects your OAuth token.

Requests flow through the Maton gateway to Facebook, and OAuth material is handled by that gateway. This is disclosed and purpose-aligned, but it means Page data and authorization context pass through a third-party provider.

User impactFacebook Page data and authorization context may be processed by Maton while using the integration.

RecommendationUse this only with a Maton account you trust, specify the intended connection when multiple connections exist, and avoid sharing URLs or outputs that may contain access tokens.