claw2immich
ReviewAudited by ClawScan on May 10, 2026.
Overview
This Immich photo skill is mostly coherent, but it exposes broad photo-library MCP access and can create no-login shared links to private media, so users should review permissions carefully.
Install only if you trust the claw2immich MCP server and are comfortable letting an agent search your Immich photos. Prefer restricted credentials or tool allowlists, require confirmation before sharing links, and use a trusted local or TLS-protected MCP endpoint.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent with this MCP access could create shareable links to private photos or albums, and the broad tool surface may permit more actions than the user expected for simple photo search.
The skill's stated purpose is photo search/download, but it advertises a broad MCP API surface and a tool path that creates unauthenticated share links without clear confirmation or recipient-scope guidance.
“249 tools available from the full Immich OpenAPI spec” ... “immich_createsharedlink | Create shared link for album/assets” ... “shared_link (default): Returns a tokenized shared link (30 min TTL, no auth)”
Use a restricted claw2immich/Immich account or tool allowlist where possible, require explicit user confirmation before creating or sending shared links, and regularly revoke or audit generated links.
Installing and configuring the MCP server can give the agent visibility into private photo metadata and image content.
The skill is expected to access a user's Immich library, but that library can contain sensitive people, location, date, and image data, so the delegated access is important to notice.
“Work with your Immich photo library via the claw2immich MCP server. Search by people, dates, locations, and albums. Download photos via shared links or inline base64.”
Only connect this skill to an Immich instance you trust the agent to access, and prefer least-privilege/read-only credentials or a limited test library if available.
The security of the integration depends on the separately installed claw2immich server, not just this instruction-only skill.
The required MCP server is installed separately from an external repository, so the behavior and credential handling of that server are outside the reviewed skill files.
“Follow the installation guide at: https://github.com/JoeRu/claw2immich”
Review the claw2immich repository, install from a trusted release or pinned commit, and keep the MCP server updated.
If this endpoint is remote, exposed, or not protected by a trusted network/TLS, private photo-library data could be visible to the wrong system.
The MCP connection is configured as an HTTP SSE endpoint, which may carry photo queries, metadata, thumbnails, or asset identifiers between OpenClaw and the MCP server.
“"baseUrl": "http://your-claw2immich-host:port/sse"”
Use localhost or a trusted private network when possible, consider HTTPS/TLS for remote MCP endpoints, and verify the mcporter configuration points to your intended server.