ClawHub
Back to skill
v1.0.1

Book Language Tutor

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:23 AM.

Analysis

The skill is a straightforward external booking helper, but it can create real bookings and send contact details to Lokuli without documented final-confirmation safeguards.

GuidanceUse this skill cautiously for real bookings. It is appropriate for searching and checking availability, but before creating a booking, require a clear final confirmation of the tutor, time, location or online format, contact details, price, and cancellation terms.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusConcern
SKILL.md
"name": "create_booking", "arguments": { "providerId": "xxx", "serviceId": "yyy", "timeSlot": "2025-02-10T14:00:00-08:00", "customerName": "John Doe", "customerEmail": "john@example.com", "customerPhone": "+13105551234" }

This shows the skill can perform a real booking action using the user's contact details. The artifact does not include a documented requirement to confirm provider, time, price, cancellation terms, or contact details immediately before this action.

User impactAn agent using the skill could place an appointment or share contact details before the user has clearly approved the final booking details.
RecommendationOnly allow search and availability checks until the user explicitly confirms the exact provider, service, date/time, contact details, and any costs or cancellation terms.
Agentic Supply Chain Vulnerabilities
SeverityInfoConfidenceHighStatusNote
metadata
Source: unknown; Homepage: none

The skill is instruction-only, but its provenance metadata is sparse for a skill that directs booking traffic to an external service.

User impactIt may be harder for a user to verify who maintains the skill or review service documentation before sharing booking information.
RecommendationVerify Lokuli and the listed MCP endpoint independently before relying on the skill for real bookings.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
MCP Endpoint: https://lokuli.com/mcp/sse ... "customerName": "John Doe", "customerEmail": "john@example.com", "customerPhone": "+13105551234"

The skill discloses an external MCP endpoint and example booking fields containing personal contact information. This is purpose-aligned for booking, but it means user data leaves the agent environment.

User impactYour name, email, phone number, location, and booking preferences may be sent to Lokuli or providers through the MCP service.
RecommendationShare only the information needed to complete the booking, and confirm you are comfortable sending those details to Lokuli before creating a booking.