ClawHub

PingHarbor

v1.0.2

Query uptime monitors, heartbeat monitors, manage sites, retrieve incidents, create monitors, and fetch SLA reports from your PingHarbor account.

1· 47·0 current·0 all-time
by@captain-cole
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
Requires OAuth token
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the required environment variable and the documented MCP API endpoint. Requesting a single PINGHARBOR_API_KEY is appropriate for interacting with the PingHarbor API.
Instruction Scope
SKILL.md is instruction-only and confines runtime actions to calls against https://api.pingharbor.com/functions/v1/mcp using the Bearer token. It also documents writing the API key into ~/.openclaw/openclaw.json; that is expected but worth noting because it stores the key in plaintext if used.
Install Mechanism
No install spec or code files are included (instruction-only), so nothing is downloaded or written to disk by an installer step.
Credentials
Only one credential (PINGHARBOR_API_KEY) is required and it is the primary credential for the stated functionality. No unrelated secrets or config paths are requested.
Persistence & Privilege
always is false and the skill is user-invocable; it does not request elevated or persistent platform-wide privileges beyond storing its own API key in OpenClaw config if the user chooses to do so.
Assessment
This skill appears coherent and limited to PingHarbor API use. Before installing: (1) Prefer providing the API key via environment variable rather than saving it in ~/.openclaw/openclaw.json to avoid plaintext persistence. (2) Use a minimally-scoped API key (if PingHarbor supports scopes) and rotate/revoke it if compromised. (3) Be aware the skill can create monitors and heartbeat monitors that may call arbitrary webhook URLs—only create webhooks you trust. (4) Confirm the MCP endpoint (https://api.pingharbor.com) matches your PingHarbor account region/official docs. If you need stronger assurance, request the skill author or publisher identity and verify against PingHarbor's official integration guidance.

Like a lobster shell, security has layers — review code before you run it.

latestvk97aqyddd6fzyqvdzy06kxv4q984d7vd

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

âš“ Clawdis
EnvPINGHARBOR_API_KEY
Primary envPINGHARBOR_API_KEY

Comments