unkey-cli
PassAudited by ClawScan on May 3, 2026.
Overview
This is a coherent Unkey CLI helper, but it can use sensitive Unkey root credentials and make account-changing API key, permission, and rate-limit changes.
Install this only if you want the agent to help administer Unkey from your terminal. Verify the Unkey CLI source, use a least-privileged credential where possible, keep root keys redacted, and manually review commands that create, delete, or change keys, permissions, namespaces, or rate limits.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If used incorrectly, the agent could change or remove API keys, permissions, namespaces, or rate-limit behavior in the user's Unkey workspace.
The skill is designed to run CLI commands that can create, update, or delete Unkey resources and alter permissions/rate limits. This is expected for the stated purpose, but it is high-impact administration authority.
创建、查询、删除 API namespace; 创建、校验、更新、删除 API keys; 管理 permissions / roles(RBAC); 配置或排查 ratelimit
Review mutating commands before execution, especially permission changes and deletes, and keep the existing confirmation step for irreversible operations.
Anyone or any agent action using the root key can potentially administer important Unkey resources within the credential's scope.
The skill uses Unkey root credentials or local CLI auth configuration to act on the user's workspace. This is purpose-aligned, and the skill says to stop if no credential source exists, but root-key access is sensitive.
执行命令前确认 root key 来源,优先级如下:1. 命令参数 `--root-key` 2. 环境变量 `UNKEY_ROOT_KEY` 3. 本地配置 `~/.unkey/config.toml`(来自 `unkey auth login`)
Use the least-privileged Unkey credential available, avoid pasting full root keys into chat when possible, verify the auth source, and keep secrets redacted from outputs.
Installing the wrong package or an unverified binary could run unreviewed code locally.
The skill instructs users to install an external CLI package or binary that is not included in the artifact set. This is normal for a CLI skill, but package provenance and version pinning are left to the user.
若未安装,优先提示以下方式之一:`npm install -g unkey` 或从 GitHub Releases 下载对应平台二进制。
Install only from the official Unkey package or release page, check publisher/release details, and pin or record the version used in sensitive environments.