Danube Tools Marketplace
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: tools-marketplace Version: 8.0.13 The skill bundle provides a legitimate integration for the Danube AI tool marketplace (danubeai.com). It includes standard instructions for API key acquisition via OAuth 2.0 device flow and MCP server configuration, and it guides the agent on how to discover and execute tools within that ecosystem without any evidence of malicious intent or data exfiltration.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If installed and connected, the agent could run marketplace tools or workflows that affect third-party services or user resources, especially when credentials are configured.
The skill exposes a broad, changing remote tool marketplace and batch execution path rather than a small fixed integration. The artifacts do not define approval, containment, or reversibility controls for side-effecting tools.
description: Connect your AI agent to ... execute anything available ...; execute_tool(tool_id, parameters) — Run any tool by its ID; batch_execute_tools(calls) — Run multiple tools concurrently
Use this only with explicit user approval for each side-effecting action, inspect the selected tool schema before execution, avoid batch execution for sensitive operations, and limit connected services where possible.
Anyone or any agent process with this key may be able to perform actions as the user within Danube's permitted scope.
The required API key is purpose-aligned and disclosed, but it carries broad user-scoped execute and write authority through a single credential.
The DANUBE_API_KEY grants: ... Execute: Run tools and workflows ... Write (user-scoped only): Create/update/delete your own skills and workflows
Store the API key securely, rotate it if exposed, prefer a dedicated key for this agent, and review whether Danube offers narrower scopes or revocation controls.
Sensitive data included in tool parameters or returned results may be transmitted to and retained by Danube, and possibly passed to downstream services.
Tool calls go through a hosted MCP gateway, and the provider logs parameters and results. This is disclosed, but it means user prompts, tool inputs, and outputs may leave the local agent environment.
url: https://mcp.danubeai.com/mcp ... All tool executions are logged with timestamps, parameters, and results for user review.
Avoid sending secrets or sensitive personal/business data unless necessary, review Danube's privacy and retention terms, and verify where downstream tool data is sent.