Coupler.io
ReviewAudited by ClawScan on May 1, 2026.
Overview
This is a coherent read-only Coupler.io data-access skill, but users should notice that it uses OAuth tokens, a local mcporter CLI, and a remote MCP server to query account data.
This skill appears purpose-aligned and read-only. Before installing or using it, verify the Coupler.io MCP endpoint, install mcporter from a trusted source, and authenticate only with a Coupler.io account whose OpenClaw-destination flows you are comfortable letting the agent query.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
After authentication, the agent can use the delegated Coupler.io access to list and query visible OpenClaw-destination dataflows.
The skill requires OAuth login and stores tokens/config locally so it can access the user's Coupler.io data through the MCP server.
mcporter auth --http-url https://mcp.coupler.io/mcp --persist config/mcporter.json
Authenticate only with an account you intend to expose to this workflow, verify the OAuth prompt, and revoke/reset the token if you no longer need the integration.
Queries and returned data may include sensitive information from Coupler.io flows configured for OpenClaw access.
The skill routes authentication and data queries through remote Coupler.io endpoints using MCP; this is disclosed and aligned with the purpose.
This skill connects to `auth.coupler.io` (OAuth) and `mcp.coupler.io` (MCP data).
Confirm the domains in your Coupler.io account, use only intended dataflows, and avoid querying sensitive datasets unless that is the goal.
Commands will run through whatever mcporter executable is available on the user's PATH.
The skill depends on an external local CLI that is not listed in the registry requirements; this is expected for an MCP instruction-only skill but leaves trust in the user's installed mcporter binary.
- [mcporter](https://github.com/openclaw/mcporter) CLI installed and on PATH
Install mcporter from a trusted source, keep it updated, and verify which binary is on PATH before using the skill.
Users may assume official provenance from the skill text even though the registry metadata does not independently confirm it.
The registry metadata does not provide source or homepage provenance, while SKILL.md presents the integration as Coupler.io-authored and official.
Source: unknown; Homepage: none
Verify the integration from your Coupler.io account or Coupler.io documentation before authenticating.