Typeform
ReviewAudited by ClawScan on May 1, 2026.
Overview
This is a coherent Typeform integration, but it needs a Maton API key and can read or change Typeform account data when the user approves write actions.
Use this skill only if you trust Maton as the OAuth intermediary for your Typeform account. Keep the MATON_API_KEY private, select the correct Typeform connection when multiple accounts exist, and review all create, update, or delete actions before approving them.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone or any agent with this key could make Typeform API requests within the connected account's permissions.
The skill relies on a bearer API key that authorizes access through Maton to the user's connected Typeform account.
All requests require the Maton API key in the Authorization header
Keep MATON_API_KEY secret, use the intended Maton account and Typeform connection, and revoke unused connections or keys.
If a user approves the wrong action, forms or connection data in Typeform could be created, changed, or deleted.
The skill documents write and delete authority for Typeform resources, while also requiring user confirmation before those actions.
All write operations require explicit user approval. Before executing any create, update, or delete call, confirm the target resource and intended effect with the user.
Before approving write or delete actions, verify the account connection, target form or resource ID, and expected result.
Typeform data, including potentially sensitive survey responses, may pass through a third-party proxy service.
Requests and Typeform response data flow through the Maton gateway as part of the managed OAuth design.
Maton proxies requests to `api.typeform.com` and automatically injects your OAuth token.
Use this only if you trust Maton to handle your Typeform API traffic and avoid routing highly sensitive forms unless that data flow is acceptable.