Back to skill
Skillv1.0.1
ClawScan security
Book Tutor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:06 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's instructions, declared requirements, and behavior are internally consistent with a tutor-search-and-booking integration and do not request unrelated credentials or install code on the agent host.
- Guidance
- This skill appears coherent and low-risk: it only describes making JSON-RPC calls to an external Lokuli MCP endpoint to search and book tutors and does not request local credentials or install code. Before installing or using it, confirm you trust lokuli.com (check their privacy/terms), be cautious about supplying real personal contact information (test with dummy data first), and verify whether the platform provides any required authentication for the MCP endpoint. If you prefer the agent not act autonomously on bookings, keep autonomous invocation disabled or require explicit confirmation before creating bookings.
Review Dimensions
- Purpose & Capability
- noteThe name/description map directly to the SKILL.md: it contains JSON-RPC calls for searching, checking availability, and creating bookings against Lokuli's MCP endpoint. One minor note: the SKILL.md does not describe any authentication mechanism for the external MCP endpoint (which may be handled by the platform), but that omission is explainable and not by itself incoherent.
- Instruction Scope
- okRuntime instructions are limited to calling the external Lokuli MCP endpoint (tools/call JSON payloads). They do not instruct reading local files, environment variables, system configs, or sending data to unexpected endpoints beyond lokuli.com.
- Install Mechanism
- okNo install spec and no code files — instruction-only. Nothing is written to disk or downloaded as part of the skill install, which minimizes risk.
- Credentials
- noteThe skill requests no environment variables or credentials (proportionate). However, its booking calls include customerName/email/phone fields, meaning the agent will transmit user-supplied personal contact data to lokuli.com; consider privacy implications before providing real personal data.
- Persistence & Privilege
- okSkill is not always:true and does not request system-wide configuration changes or persistent privileges. Model invocation is enabled (default), which is normal for skills.