NocoDB API

ReviewAudited by ClawScan on May 10, 2026.

Overview

This appears to be a straightforward NocoDB API wrapper, but it gives the agent powerful access to read, change, delete, and administer NocoDB data using your token.

Install only if you are comfortable giving the agent NocoDB API access. Use a dedicated, least-privilege token, verify the NOCODB_URL, and require manual confirmation before any delete, bulk update, schema, member, token, attachment, script, or automation action.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Medium

#ASI02: Tool Misuse and Exploitation

What this means

If the agent runs the wrong command, it could change or delete business data or alter account/team access in NocoDB.

Why it was flagged

The skill intentionally exposes high-impact NocoDB operations, including data deletion, schema changes, team administration, and token lifecycle management.

Skill content

- ➕ **Create, update, delete** records programmatically  
- 📊 **Manage database structure** (tables, fields, views)
- 👥 **Handle team collaboration** (Enterprise plans)
- 🔐 **Manage API tokens** (Enterprise plans)

Recommendation

Use a least-privilege NocoDB token and instruct the agent to ask for confirmation before deletes, bulk updates, schema changes, member changes, token changes, or automation triggers.

Medium

#ASI03: Identity and Privilege Abuse

What this means

The agent can act with whatever permissions the supplied NocoDB token has.

Why it was flagged

The script uses the NOCODB_TOKEN as an API credential and sends it as the xc-token header to the configured NocoDB API endpoint.

Skill content

NC_TOKEN="${NOCODB_TOKEN:-}"
... _get()    { curl -sS -H "xc-token: $NC_TOKEN" "$NC_URL/api/v3/$1"; }

Recommendation

Create a dedicated token with only the permissions needed for the intended task, rotate it if exposed, and verify NOCODB_URL points to the intended NocoDB instance.

Low

#ASI04: Agentic Supply Chain Vulnerabilities

What this means

Users have less external context for verifying who maintains the skill or comparing the packaged script against an upstream project.

Why it was flagged

The registry metadata does not identify a source repository or homepage for provenance review.

Skill content

Source: unknown
Homepage: none

Recommendation

Review the included script before use and prefer installing from a package with a clear repository, maintainer, and release history.