CoPaw API Chat

v0.1.0

Communicate with a CoPaw instance through its HTTP API. Use when: (1) you need to inspect available CoPaw agents or chats, (2) create a chat or session and s...

⭐ 0· 81·0 current·0 all-time

by@erview

MIT-0

Download zip

LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

Name/description match the actual content: the SKILL.md and references describe API endpoints, chat/session flow, and admin surfaces. No unrelated binaries, credentials, or installs are requested.

ℹ

Instruction Scope

Instructions stay on-topic (create chat → send message → read SSE). The references document admin-level endpoints and explicitly warn they are high-risk; that is appropriate caution rather than scope creep. The skill does not instruct reading local files or unrelated environment variables.

✓

Install Mechanism

No install spec and no code files—instruction-only—so nothing is written to disk or downloaded during install.

✓

Credentials

The skill declares no required env vars or credentials. It mentions possible Basic Auth or Bearer tokens in context (real API concerns) but does not request unrelated secrets or excessive environment access.

✓

Persistence & Privilege

always is false and the skill is user-invocable; it does not request permanent presence or modify other skills or system settings.

Assessment

This is an instruction-only skill for talking to a CoPaw HTTP API and appears coherent. Before using it: ensure you point requests at a trusted/local CoPaw instance (avoid exposing internal endpoints to the public internet); only provide Basic Auth or Bearer tokens when you trust the target server; avoid automating admin endpoints (/api/workspace, /api/mcp, /api/cron) unless you need admin tasks; and review any credentials you supply to other tools or scripts that call these endpoints. Because the skill is just documentation and examples, it won't install code, but the HTTP requests it recommends could be used to read or modify data on the target server — proceed with the usual caution when granting API access.

Like a lobster shell, security has layers — review code before you run it.

latestvk970hd7axz283zjzdj85z9dykh83dzv0

License

MIT-0

Free to use, modify, and redistribute. No attribution required.

Termshttps://spdx.org/licenses/MIT-0.html

CoPaw API Chat

License

Comments