VITA — Longevity Intelligence
PassAudited by ClawScan on May 1, 2026.
Overview
This instruction-only skill matches its VITA health-data purpose, but it uses a persistent API key and brings sensitive health, wearable, and supplement data into the agent.
This appears purpose-aligned and instruction-only, but install it only if you are comfortable giving the agent access to your VITA health data. Verify the VITA endpoint and publisher, use a revocable API key, and remove the key when you no longer need the integration.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone using this skill should expect the agent to be able to request VITA health data while the key remains configured.
The skill instructs users to configure a bearer API key that the agent can use to access VITA on their behalf. This is expected for the stated integration, but it grants ongoing authenticated access.
"VITA_API_KEY": "vita_<your key>" ... curl "$VITA_API_URL?action=<action>" -H "Authorization: Bearer $VITA_API_KEY"
Use a dedicated, revocable VITA API key if possible, remove it when no longer needed, and verify what permissions VITA keys grant.
Health metrics and supplement details may appear in agent conversations and outputs when the skill is used.
The skill is designed to move sensitive personal health, wearable, and supplement information from VITA into the agent's working context. This is purpose-aligned but privacy-sensitive.
Returns today's AI insight, wearable metrics (Oura/WHOOP), and active supplement stack.
Only enable this if you want the agent to handle this health data, and avoid asking it to share or summarize the data into untrusted channels.
Users have less registry-level information to confirm that this is the official or intended VITA integration before configuring an API key.
The registry metadata does not provide a source or homepage for verifying the skill's provenance. There is no install code, so this is a provenance note rather than evidence of unsafe execution.
Source: unknown; Homepage: none
Verify the VITA API URL and publisher through VITA's official channels before storing a key in OpenClaw.