Back to skill
Skillv1.0.1
ClawScan security
Book Meditation · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:06 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent with its stated purpose (booking meditation) and requests no unexpected credentials or installs, though it will send booking data to an external Lokuli endpoint so you should confirm you trust that service before submitting personal data.
- Guidance
- This skill appears coherent for booking meditation services. Before installing or using it, verify you trust Lokuli (the SKILL.md will send booking data, including PII, to https://lokuli.com/mcp/sse). Ask the publisher for a homepage or privacy/security info if you need it. Consider testing with non-sensitive/dummy contact details first. If you require that bookings not send personal data automatically, request explicit consent prompts or review the agent’s outgoing requests. If you need higher assurance, ask the publisher for a signed source or repository URL so you can inspect implementation details.
Review Dimensions
- Purpose & Capability
- okName/description match the instructions: SKILL.md shows search, check_availability, and create_booking RPC calls against Lokuli's MCP endpoint, which is what a booking skill would do.
- Instruction Scope
- noteInstructions are narrowly scoped to calling Lokuli's MCP (SSE/JSON-RPC) and use platform 'tools/call' payloads. They include examples that send customer PII (name, email, phone) to the external endpoint — this is expected for bookings but worth noting because it transmits user data off-platform.
- Install Mechanism
- okNo install spec or code files are present (instruction-only), so nothing is written to disk or fetched at install time.
- Credentials
- okThe skill requests no environment variables, credentials, or config paths — there are no disproportionate secret or credential demands.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request permanent presence or elevated privileges.