Box
AdvisoryAudited by Static analysis on May 6, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing and using the skill can give the agent ClawLink-mediated access to Box data allowed by the connected account and approved OAuth scopes.
The skill requires delegated Box account access through OAuth, which is sensitive but expected for a Box file-management integration.
ClawLink's hosted page runs the hosted OAuth flow — the user clicks through the Box login and authorization screen.
Review the Box OAuth consent screen and only approve scopes and accounts you are comfortable allowing the agent to use.
If the user approves a write action, the agent may modify Box files, folders, sharing, or collaboration settings.
The skill can perform Box write actions, including file and collaboration changes, but it instructs the agent to preview and confirm writes before execution.
For writes or anything marked as requiring confirmation, call `clawlink_preview_tool` first, then confirm with the user.
Before confirming any write, destructive, bulk, or sharing-related action, review the preview carefully and verify the target files, folders, and collaborators.
The actual Box tool behavior depends on the installed ClawLink plugin and live tool catalog, not just this instruction-only skill.
The skill depends on an external ClawLink plugin that is not included in the provided artifact set, so this review cannot inspect that plugin's implementation.
Install the verified ClawLink plugin: `openclaw plugins install clawhub:clawlink-plugin`
Install the ClawLink plugin only from the expected ClawHub source and review ClawLink's documentation or verification page if you need assurance about the integration.
Box-related requests and authorized actions may pass through ClawLink rather than directly between OpenClaw and Box.
Box access is mediated through the ClawLink gateway, so tool calls and credential-related flows depend on that third-party service boundary.
Powered by [ClawLink](https://claw-link.dev), an integration hub for OpenClaw that handles hosted connection flows and credentials
Use this skill only if you trust ClawLink to broker Box access, and check the ClawLink documentation and connected-account settings.