Back to skill
Skillv1.0.0
ClawScan security
botcall · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 8, 2026, 9:52 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions align with its stated purpose: it needs the botcall CLI and a BOTCALL_API_KEY to provision numbers and read SMS verification codes.
- Guidance
- This skill appears to be what it says: it installs a botcall CLI and uses a BOTCALL_API_KEY to provision phone numbers and read SMS codes. Before installing: (1) verify the npm package and vendor (botcall.io) and inspect the package if you need high assurance; (2) create and use a limited-scope API key and rotate/revoke it if compromised; (3) be aware that the key lets the skill read incoming SMS (which can include sensitive 2FA codes) and may incur billing charges — monitor usage and billing; (4) avoid putting a high-privilege or shared secret into plain MCP configs or shared files; (5) if you do not want the agent to autonomously request numbers or read SMS, restrict skill invocation or require confirmation before use.
Review Dimensions
- Purpose & Capability
- okName/description, required binary (botcall), required env var (BOTCALL_API_KEY), and the npm install entry all directly match the stated functionality of provisioning numbers and receiving SMS. No unrelated services, binaries, or credentials are requested.
- Instruction Scope
- okSKILL.md only instructs the agent to run the botcall CLI commands (provision, inbox, get-code, release, billing, etc.) and to place the API key in the environment or MCP config. It does not instruct the agent to read unrelated files, system secrets, or transmit data to unexpected endpoints. Note: the agent will be used to perform external signups using provisioned numbers (expected for this use case).
- Install Mechanism
- noteInstall is via an npm package named 'botcall' that creates a 'botcall' binary — this is a standard, traceable package install from the public registry. Installing npm packages executes third-party code, so review the package and its maintainers if you require higher assurance.
- Credentials
- okOnly a single API credential (BOTCALL_API_KEY) is required and is declared as the primary credential. This is proportionate to the skill's purpose, but that key grants access to phone numbers and received SMS (which may contain sensitive verification codes), so limit scope/rotation as appropriate.
- Persistence & Privilege
- okThe skill does not request always:true or any elevated persistent privileges. Model invocation is allowed (platform default). Be aware that any agent with access to this skill can request numbers and read SMS while the API key is available.