Back to skill
Skillv0.0.4
ClawScan security
Salai MCP (Beta) · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 19, 2026, 7:52 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions are consistent with a grocery price‑comparison assistant that calls Salai's MCP API; nothing requested is disproportionate to that purpose.
- Guidance
- This skill appears coherent: it legitimately needs a Salai API key and calls Salai's MCP endpoint to perform searches, price comparisons, and cart operations. Before installing, confirm you trust the Salai service and that the API key you provide was obtained from https://app.salai.co.il (beta access). Do not paste your API key into public chat or logs; treat it as a secret. Be aware that product queries and cart contents will be transmitted to the external Salai endpoint (expected behaviour). If you have operational concerns, limit the agent's autonomy or require explicit user approval before the skill runs, and rotate the API key if you believe it was exposed.
Review Dimensions
- Purpose & Capability
- okName, description, and declared primary credential (SALAI_API_KEY) match the SKILL.md instructions to call Salai's MCP endpoint for product search, pricing, and cart operations. No unrelated binaries, credentials, or config paths are requested.
- Instruction Scope
- noteInstructions explicitly call the external endpoint (https://mcp.salai.co.il/mcp) and describe header-based auth and specific API methods; they do not instruct reading local files or unrelated environment variables. Note: using the skill will send product queries and cart data to the remote Salai service (expected for this kind of integration).
- Install Mechanism
- okNo install spec or code is included (instruction-only), so nothing is written to disk or downloaded during install. This is the lowest-risk install posture.
- Credentials
- okThe only required credential is SALAI_API_KEY (declared as primary and secret). That single API key is proportionate to a remote-API grocery/comparison skill; there are no extraneous secrets requested.
- Persistence & Privilege
- okThe skill is not configured as always:true and does not request modifications to other skills or system-wide settings. Model invocation is allowed (default), which is expected for skills; no elevated persistence is requested.