ClawHub
Back to skill
v1.0.1

Book Cleaning

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:24 AM.

Analysis

The skill matches its stated cleaning-booking purpose, but it can create a real booking and send contact details to a remote MCP service without documented final-confirmation safeguards.

GuidanceBefore installing, verify the Lokuli service and make sure your agent will not call create_booking until you have reviewed and explicitly approved the provider, time, service details, any cost or cancellation terms, and the contact information being sent.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceMediumStatusConcern
SKILL.md
### create_booking ... "timeSlot": "2025-02-10T14:00:00-08:00", "customerName": "John Doe", "customerEmail": "john@example.com", "customerPhone": "+13105551234"

The skill exposes a tool that creates a booking using user contact details, but the artifact does not instruct the agent to obtain final user approval or verify booking terms before calling it.

User impactThe agent could create an unwanted appointment or share contact details with the booking service if it proceeds too quickly.
RecommendationRequire the agent to show the selected provider, service, time, price or fees if available, cancellation terms, and contact details, then ask for explicit confirmation before calling create_booking.
Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
metadata
Source: unknown
Homepage: none

The registry metadata does not provide a source repository or homepage, which makes it harder to verify the maintainer or service provenance before using the remote booking endpoint.

User impactYou have less information for verifying who operates or maintains the integration.
RecommendationVerify the Lokuli service and endpoint through trusted channels before relying on the skill for real bookings.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityMediumConfidenceHighStatusNote
SKILL.md
## MCP Endpoint

```
https://lokuli.com/mcp/sse
```

Transport: SSE | JSON-RPC 2.0 | POST requests

The skill sends MCP/JSON-RPC requests to a remote service; this is expected for the stated purpose, but the booking payload includes personal contact information and the artifact does not describe data handling boundaries.

User impactYour name, email, phone number, and booking preferences may be sent to the remote Lokuli MCP service.
RecommendationUse only if you are comfortable sharing booking contact details with Lokuli, and avoid sending unnecessary personal information.