Skillv1.0.0

ClawScan security

Capital Equipment · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 3, 2026, 7:38 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's instructions and required actions are broadly consistent with a booking/search service, but the source is unknown and it asks you to add an external MCP server and rely on an OAuth flow — you should verify the third party before enabling or giving consent.
Guidance: Before installing or enabling this skill: 1) Verify the external domain (capneteq.com) and the organization behind the service (look for an official homepage, privacy policy, and contact info). 2) Only complete the OAuth sign-in through the provider's official pages (do not paste credentials into the skill). 3) Review the OAuth scopes (equipment:read, equipment:book, service-requests:write, profile:read) and grant the minimum necessary access; consider using a test account initially. 4) Keep automations disabled until you confirm what data they access and how alerts are delivered. 5) Because the skill is instruction-only and there is no published source/homepage, be cautious: the skill relies on a third‑party server you must add to your configuration — treat that as a trust decision. If the publisher or homepage can be provided, re-evaluate after verifying the vendor.

Review Dimensions

Purpose & Capability: noteThe name and description (search, book, manage equipment) match the SKILL.md functionality (search, availability, booking, service requests, collaborator discovery). However the skill requires adding an external MCP server URL (https://capneteq.com/...) to your OpenClaw configuration and trusting that server for OAuth and SSE communication; that is expected for this integration but introduces a trust decision because the source/homepage is not provided.
Instruction Scope: noteRuntime instructions are limited: perform an OAuth redirect to the Capital Equipment sign-in page and add an MCP server entry to the OpenClaw config. There are no instructions to read arbitrary files or environment variables. The SKILL.md also describes optional automations that access saved searches, bookings, and public profiles; automations are disabled by default. The skill's claims about not reading private messages/files are declarative and cannot be verified from the instruction-only content.
Install Mechanism: okThis is an instruction-only skill with no install spec and no code files; nothing is downloaded or written by the skill itself. Lowest-risk install profile, but runtime behavior depends on the external MCP server you add.
Credentials: okThe skill declares no required environment variables, no primary credential, and no config paths beyond the MCP server entry. Authentication is done via OAuth using an external provider — scopes are reasonable for booking/profile operations (equipment:read, equipment:book, service-requests:write, profile:read).
Persistence & Privilege: notealways is false and automations are explicitly disabled by default (the file says each must be opt-in). The skill can be invoked autonomously (platform default), which increases its runtime reach if the user grants OAuth scopes — users should understand and control that consent. Nothing indicates the skill will modify other skills or system-wide settings.