Back to skill
Skillv1.0.0
ClawScan security
Strava Skill · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousFeb 11, 2026, 9:33 AM
- Verdict
- suspicious
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's runtime instructions require a Transition API key to access your Strava data, but the registry metadata omits that credential — the skill is mostly coherent but the missing declaration and reliance on an external service warrant caution.
- Guidance
- Before installing: 1) Note the SKILL.md requires a TRANSITION_API_KEY (X-API-Key) even though the registry metadata lists none — that omission is a transparency issue. 2) Only provide an API key if you trust the Transition service (https://transition.fun); verify the domain, TLS, and the service's privacy policy and terms. 3) Prefer adding the key to the agent's secret store (or skill-specific config) rather than your global shell profile. 4) Limit exposure: use a revocable key, test with a throwaway account if possible, and monitor the key's usage/requests after enabling the skill. 5) If you need stronger assurance, ask the skill author to update the registry metadata to declare TRANSITION_API_KEY as a required credential and to explain how the key is used, stored, and transmitted. 6) Revolve/rotate the key and revoke it immediately if you see unexpected activity.
Review Dimensions
- Purpose & Capability
- concernSKILL.md's purpose (ask questions about Strava data) aligns with calling Transition's API, but the registry metadata lists no required environment variables or primary credential while the instructions explicitly require TRANSITION_API_KEY/X-API-Key. That metadata omission is an inconsistency.
- Instruction Scope
- okThe instructions confine actions to HTTP calls to https://api.transition.fun (including an unauth WOD endpoint and authenticated coach/workouts endpoints). They do not direct reading local files, scanning other creds, or exfiltrating data to unexpected endpoints.
- Install Mechanism
- okNo install spec and no code files — instruction-only skill. This is the lower-risk model (nothing written to disk by the skill itself).
- Credentials
- concernThe skill legitimately needs a Transition API key to access synced Strava data, which is proportionate to the described feature set. However, the registry did not declare this required secret; that mismatch reduces transparency and could lead to accidental leakage or confusion about what the agent will transmit.
- Persistence & Privilege
- okSkill has no elevated persistence (always:false) and does not request system-level changes or other skills' config. Autonomous invocation is allowed (platform default) but not combined with other high-risk factors here.