Back to skill
Skillv1.0.0
ClawScan security
Book Auto · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:05 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's requests and runtime instructions are internally consistent with a booking helper for automotive services, but it transmits user contact data to an external endpoint of unknown origin and omits any authentication details — exercise caution.
- Guidance
- This skill appears coherent for booking auto services, but it will send user contact information to an external endpoint (https://lokuli.com). Before installing or using it: 1) Verify the provider (lokuli.com) and its privacy policy; 2) Confirm how authentication is handled (the SKILL.md provides no API key or auth flow); 3) Ensure you obtain explicit user consent before transmitting PII (email/phone); 4) Test with non-sensitive/demo data first; 5) If you need guarantees about data handling, ask the skill author for details (owner/ homepage) or avoid using it until provenance and auth are clear.
Review Dimensions
- Purpose & Capability
- okName, description, and the SKILL.md all describe finding providers, checking availability, and creating bookings via Lokuli's MCP endpoint; the declared capabilities (search, check_availability, create_booking) match the stated purpose.
- Instruction Scope
- noteInstructions stay within booking workflow (collect service and ZIP, search providers, check availability, confirm, create booking). They include examples that will transmit personal contact info (customerName, customerEmail, customerPhone) to https://lokuli.com/mcp/sse; the workflow calls for explicit user confirmation but does not mention privacy/consent checks or what data is required for which steps.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files — lowest install risk. There is no download or external installer.
- Credentials
- okThe skill declares no environment variables, credentials, or config paths. That is proportionate to the described behavior, though the SKILL.md also omits any mention of required API keys or auth tokens that an MCP service might typically require.
- Persistence & Privilege
- okalways is false and there is no request to modify agent/system config or persist credentials. The skill does not request elevated or permanent presence.