Back to skill
Skillv0.5.1
ClawScan security
Podfetcher Tools · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 16, 2026, 2:39 PM
- Verdict
- Benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's code and runtime instructions match the stated purpose (podcast search and transcript fetch) and only require a Podfetcher API key and optional URL/header overrides; no unexpected network targets, binaries, or privileged behaviors were found, though the registry metadata slightly misstates which env vars are required.
- Guidance
- This skill appears to do what it claims: it uses Node, accepts a Podfetcher API key, and talks to the Podfetcher API (default https://api.podfetcher.com). Before installing: 1) Be aware you must provide a Podfetcher API key—treat that key like a secret. 2) The registry metadata lists two extra env vars (PODFETCHER_BASE_URL, PODFETCHER_API_KEY_HEADER) as required, but the code treats them as optional overrides; verify which env vars your environment needs. 3) The MCP server enables an agent to call the API using whatever API key you supply—only provide a key with the minimum necessary permissions and avoid using highly privileged keys in untrusted agents. 4) If you need stronger assurance, inspect the included source (src/*.js) yourself or run the CLI in an isolated environment; there are no obvious hidden endpoints, network calls beyond the Podfetcher API, or escalations in the code.
Review Dimensions
- Purpose & Capability
- okName/description (search shows, list episodes, fetch transcripts) matches the included CLI, SDK, and MCP server code. Required binary 'node' and an API key are appropriate for this functionality.
- Instruction Scope
- okSKILL.md instructs only about using the CLI/SDK/MCP with Podfetcher; runtime instructions and code only read Podfetcher-related env vars or command-line flags and communicate with the Podfetcher API. No instructions request unrelated files, system credentials, or external endpoints beyond the Podfetcher API.
- Install Mechanism
- okNo install spec is provided (instruction-only install), and the package includes source files but does not attempt to download or install arbitrary binaries. This is low-risk for installation mechanism.
- Credentials
- notePrimary credential PODFETCHER_API_KEY is appropriate. The registry metadata lists PODFETCHER_BASE_URL and PODFETCHER_API_KEY_HEADER as required env vars, but the SKILL.md and code treat those as optional overrides (with sensible defaults). This metadata-versus-code mismatch is minor but should be clarified.
- Persistence & Privilege
- okalways:false and normal model invocation are set. The skill does not request persistent system-wide privileges or modify other skills. The MCP server will expose tools over stdio as expected for an MCP plugin.