Back to skill
Skillv1.0.0
ClawScan security
Book local services · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:00 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests and runtime instructions are coherent with its stated purpose (finding and booking local services) and do not ask for unrelated system access or secrets.
- Guidance
- This skill appears coherent for booking local services. Before installing: 1) Verify Lokuli (lokuli.com) and the skill owner are trustworthy (no homepage is provided). 2) Understand that the skill will ask for your ZIP and contact info (name, email, phone) to create bookings — only provide information you are comfortable sharing with a third-party service. 3) Payment is via a Stripe checkout link — confirm the payment page is on stripe.com before entering card details. 4) The SKILL.md references an external MCP endpoint but declares no auth; clarify with the platform how authentication to Lokuli is handled (platform-managed vs. skill-managed). 5) Consider trying a low-value test booking first. If you require higher assurance, ask the publisher for a homepage, privacy policy, or documentation of how bookings and personal data are handled.
Review Dimensions
- Purpose & Capability
- okThe name/description (book local services) match the SKILL.md workflows and listed tool calls (search, fetch, check_availability, create_booking, etc.). No unrelated capabilities (cloud admin, AWS, SSH, system administration) are requested.
- Instruction Scope
- okInstructions are focused: search providers, fetch details, check availability, create bookings, and return Stripe checkout links. The SKILL.md does not instruct reading local files, shell history, or arbitrary environment variables. The only contextual data requested is user location (ZIP) and customer contact info, which are appropriate for booking.
- Install Mechanism
- okThis is an instruction-only skill with no install spec and no code files — lowest-risk delivery. The SKILL.md references an external MCP endpoint but does not instruct downloading or executing code from arbitrary URLs.
- Credentials
- noteThe skill declares no environment variables or credentials, and create_booking returns a Stripe checkout URL (so no Stripe keys are required by the skill). Note: the SKILL.md references an MCP endpoint (https://lokuli.com/mcp/sse) but does not specify how authentication is handled — this is commonly platform-managed, but the skill does not explain auth requirements.
- Persistence & Privilege
- okalways:false and user-invocable:true (defaults) — the skill does not request persistent/system-wide privileges or modify other skills. Autonomous invocation is allowed by platform default but not combined with other concerning behaviors.