Skillv1.0.0

ClawScan security

Skipup - AI Meeting Scheduling · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignFeb 18, 2026, 2:33 AM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and required credential (SKIPUP_API_KEY) are consistent with a meeting-scheduling API client; nothing in the bundle requests unrelated system access or secrets — but note a small metadata mismatch about required env vars and the skill will send emails to external participants so you should review what you send.
Guidance: This skill appears to be a straightforward client for the SkipUp scheduling API and is internally consistent with that purpose, but check these before installing: (1) Confirm the source/homepage (SKILL.md references https://skipup.ai) and that you trust that operator; the registry metadata in the package summary appears to omit the required SKIPUP_API_KEY even though the skill and code need it. (2) Provide a scoped API key (meeting_requests.read/write, members.read) — do not hardcode keys. Consider creating a test workspace/key first. (3) Be aware the service actively emails external participants and transmits any free-text 'context' you include; avoid putting passwords or other secrets in the meeting description or context. (4) Rotate and revoke the API key if you stop using the skill, and audit activity in your SkipUp workspace. (5) If you need higher assurance, contact the SkipUp operator or verify the published homepage/docs and compare them with the bundled README and SKILL.md to ensure no hidden endpoints or unexpected behavior.

Review Dimensions

Purpose & Capability: okName/description, SKILL.md, README, package.json, and src/index.ts all implement a client for a SkipUp meeting-requests API (create, pause, resume, cancel, list, and workspace members). The requested capability (coordinating meetings via an external API and email) matches the code and docs; no unrelated credentials or binaries are requested.
Instruction Scope: noteRuntime instructions and the code perform only network calls to the SkipUp API and require the SKIPUP_API_KEY; they do not read local files or access other system secrets. However, the service actively emails external participants and the API accepts free-text 'context.description' — any sensitive content placed there will be transmitted to an external email workflow. This behavior is expected for the stated purpose but is important for privacy awareness.
Install Mechanism: okThis is effectively an instruction-only skill with included TypeScript sources and no install spec or external downloads. No installer or remote archive is fetched and no unusual install actions are declared — low install-surface risk.
Credentials: noteThe skill legitimately requires a single API key (SKIPUP_API_KEY) with meeting_requests.read/write and members.read scopes, which is proportionate. There is an inconsistency in the provided metadata: the top-level registry summary listed 'Required env vars: none' while SKILL.md and package.json declare SKIPUP_API_KEY as required. That mismatch should be resolved before installation so you know the agent will need your API key.
Persistence & Privilege: okalways:false and default autonomous invocation are set (normal). The skill does not request permanent system-wide changes or access to other skills' configs. It does not claim to modify system settings or require elevated privileges.