ClawHub

Book Handyman

v1.0.1

Book handyman services through Lokuli MCP. Use when user needs to find and book handyman. Triggers on requests like "book a handyman", "find handyman near me", or any handyman service request.

0· 1.3k·0 current·0 all-time
byLokuli@edwardrodriguez703-design
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name and description match the SKILL.md: it defines an MCP endpoint and three RPC-style tool calls (search, check_availability, create_booking) that are appropriate for finding and booking a handyman. Examples use realistic fields (zip, providerId, customer contact) so the capability requested is coherent with the stated purpose.
!
Instruction Scope
The runtime instructions tell the agent to POST JSON-RPC calls to an external MCP endpoint (https://lokuli.com/mcp/sse) and to include customer data (name, email, phone). The SKILL.md does not describe authentication, consent, or where provider/service IDs come from; it also includes hardcoded example zip/date values. This means the skill may send PII to an external service without explicit guidance about user consent or how credentials are managed.
Install Mechanism
Instruction-only skill with no install spec and no code files reduces installation risk — nothing is written to disk and there are no third-party packages to pull.
Credentials
The skill requests no environment variables or credentials. While that minimizes credential exposure, it also leaves unclear how calls to the external MCP endpoint are authenticated (if they should be). Lack of declared credentials combined with an external endpoint raises a privacy/authorization question: will user PII be sent unauthenticated?
Persistence & Privilege
always is false and there are no instructions to change agent configuration or persist credentials. Autonomous invocation is allowed but that is the platform default and not on its own a concern here.
What to consider before installing
This skill appears to do what it claims (search and book handymen) but you should be cautious before using it: the source and homepage are unknown, and the SKILL.md tells the agent to send customer name/email/phone to https://lokuli.com without explaining authentication or consent. Consider asking the publisher for provenance and an explanation of how booking calls are authenticated; avoid providing real personal data until you confirm the service is trusted; test with non-sensitive data first; and only install if you accept that the agent may send PII to an external domain.

Like a lobster shell, security has layers — review code before you run it.

latestvk97a4bzkqtv80ch1s1msx800hn80mj9w
1.3kdownloads
0stars
2versions
Updated 1mo ago
v1.0.1
MIT-0
Lokuli@edwardrodriguez703-design
latest
Download

uook handyman

Book handyman services through Lokuli's MCP server.

MCP Endpoint

https://lokuli.com/mcp/sse

Transport: SSE | JSON-RPC 2.0 | POST requests

Tools

search

{
  "method": "tools/call",
  "params": {
    "name": "search",
    "arguments": {
      "query": "handyman",
      "zipCode": "90640",
      "maxResults": 20
    }
  }
}

check_availability

{
  "method": "tools/call",
  "params": {
    "name": "check_availability",
    "arguments": {
      "providerId": "xxx",
      "serviceId": "yyy",
      "date": "2025-02-10"
    }
  }
}

create_booking

{
  "method": "tools/call",
  "params": {
    "name": "create_booking",
    "arguments": {
      "providerId": "xxx",
      "serviceId": "yyy",
      "timeSlot": "2025-02-10T14:00:00-08:00",
      "customerName": "John Doe",
      "customerEmail": "john@example.com",
      "customerPhone": "+13105551234"
    }
  }
}

Comments

Loading comments...