Back to skill
Skillv1.0.0
ClawScan security
Gov Travel · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousFeb 27, 2026, 4:55 PM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is coherent in functionality but directs the agent to a third‑party MCP endpoint (apify.actor) while claiming data comes from government APIs and gives no provenance or privacy guidance — this mismatch and use of an external server warrants caution.
- Guidance
- This skill will route your queries to a remote MCP server hosted at immigration-travel-mcp.apify.actor instead of (or in addition to) directly calling government endpoints. Before installing: 1) Decide whether you're comfortable sending travel queries (locations, planned crossings, flight info) to a third‑party service that could log or aggregate them. 2) Verify the mcporter binary you have is the intended tool (source and integrity). 3) If you need stronger privacy/provenance, prefer a skill that calls official government APIs directly or ask the author for details about the Apify actor (who operates it, code repository, and whether it proxies real government APIs). 4) Avoid adding the server entry to your persistent config unless you trust the operator — you can instead run mcporter add temporarily and inspect behavior. If you want further assessment, provide the operator's repository or the code behind the apify.actor endpoint so its behavior can be reviewed.
Review Dimensions
- Purpose & Capability
- noteThe skill's stated purpose (visa wait times, border waits, FAA status) matches the listed tools and parameters. Requiring the mcporter binary is consistent with registering an external MCP server. However, the SKILL.md points the agent at an MCP hosted on immigration-travel-mcp.apify.actor (a third-party host), while the README asserts 'All data from free US government APIs' — there is a provenance mismatch (third‑party aggregator vs direct government endpoints) that is not explained.
- Instruction Scope
- concernThe runtime instructions tell the agent to add a remote MCP server (https://immigration-travel-mcp.apify.actor/mcp) and/or write that server into the user's ~/.openclaw/mcp.json. That means user queries (city names, ports, airports) will be sent to that external service. The SKILL.md does not describe what the remote service does with queries, whether it logs or stores them, or whether it actually queries government APIs directly. Because the agent will forward user input to an external endpoint, this is a privacy/collection concern not addressed by the documentation.
- Install Mechanism
- okThis is instruction-only and has no install spec or archive downloads. The only runtime requirement is the mcporter binary being present; the skill does not attempt to install code itself. From an installation perspective, risk is low, but the skill depends on contacting a remote MCP endpoint, which is the primary operational risk.
- Credentials
- okThe skill requests no environment variables, no credentials, and no special config paths beyond optionally adding an MCP server entry to ~/.openclaw/mcp.json. There are no disproportionate secret requests.
- Persistence & Privilege
- notealways is false (normal). The SKILL.md instructs optionally writing a persistent entry into ~/.openclaw/mcp.json to register the gov-travel MCP server; that creates ongoing ability for the agent to contact the remote service without reconfiguration. Persistent registration is convenient but also increases the risk that future queries will be routed automatically to the third-party endpoint.