Back to skill
Skillv1.0.7
ClawScan security
marsbit-news-skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 4, 2026, 9:18 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and instructions line up with its stated purpose: it uses curl to call a hosted MarsBit MCP endpoint to fetch news; it does not request secrets or install arbitrary code from unknown hosts.
- Guidance
- This skill appears to do what it says: it uses curl to POST queries to MarsBit's hosted MCP at https://www.marsbit.co/api/mcp and returns news data. Before installing, decide whether you trust marsbit.co to receive the content of your queries (the skill will send whatever you ask to that server). Confirm curl is acceptable to install on your system. If you prefer, install from the referenced GitHub repo and inspect the files locally; watch for the minor package.json mismatch (it requests a 'read' tool that the SKILL.md does not use). Avoid sending sensitive data through this skill if you do not trust the remote service.
- Findings
[package.json:openclaw.tools.exec_read] unexpected: package.json lists tools ["exec","read"]. 'exec' is reasonable (to run curl). 'read' is not referenced in SKILL.md and is unnecessary for the documented runtime behavior.
Review Dimensions
- Purpose & Capability
- okName/description claim fetching MarsBit news via an MCP endpoint, and the runtime instructions only require curl to POST to https://www.marsbit.co/api/mcp — this matches the stated purpose. The declared brew install of curl is proportionate.
- Instruction Scope
- noteSKILL.md instructs the agent to POST JSON to the MarsBit MCP endpoint and parse returned JSON. It does not ask the agent to read local files or environment variables. Note: user queries and any context the agent includes will be transmitted to the third-party endpoint (marsbit.co), so sensitive content may be sent off-host.
- Install Mechanism
- okInstall spec is a brew formula for curl (well-known package). The README also documents a GitHub clone installation path (GitHub is a common source). No downloads from unknown/personal servers or archives are required by the primary install path.
- Credentials
- noteThe skill requires no environment variables or credentials, which is appropriate. One minor inconsistency: package.json declares OpenClaw tools dependency ["exec", "read"] — exec is expected because the agent will run curl, but read is not used in SKILL.md and therefore appears unnecessary.
- Persistence & Privilege
- okThe skill does not request always:true and is user-invocable. It does not attempt to modify system-wide or other-skill configuration in the provided instructions.