Back to skill
Skillv0.0.3
ClawScan security
WorksHub · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 26, 2026, 6:59 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, runtime instructions, and required environment variables are coherent with its stated purpose (acting as a bridge to the WorksHub MCP API); only minor metadata inconsistencies were found.
- Guidance
- This skill appears to do exactly what it claims: act as a CLI bridge to WorksHub MCP. Before installing, confirm the legitimacy of the workshub.ai endpoint and that you trust the publisher. Use a least-privilege API key (scoped if possible) rather than a high-privilege account. Note small metadata inconsistencies (SKILL.md says WORKSHUB_API_URL has a default but registry marked it required; version strings also differ across files) — they look like bookkeeping errors, not malicious behavior, but you may want to confirm the author/publisher. Run the skill in a sandboxed environment as recommended and inspect the code if you plan to provide sensitive credentials.
Review Dimensions
- Purpose & Capability
- okThe skill is presented as a bridge to the WorksHub MCP API and requires an API key and optional base URL. The bridge.js file only makes HTTP calls to the declared base URL and exposes the 16 described tools. The requested env vars and network permission (workshub.ai:443) are appropriate for this purpose.
- Instruction Scope
- noteSKILL.md instructs installing axios and running node bridge.js with JSON args — this matches bridge.js usage. The instructions do not ask the agent to read unrelated files or exfiltrate data. They include actions to send verification codes and create API keys (expected for an auth flow). Minor issue: SKILL.md marks WORKSHUB_API_URL as optional (has a default), while registry metadata listed it as required.
- Install Mechanism
- okThere is no automated download/install spec; the skill is instruction-only and asks the user to run npm install (axios). This is a low-risk, standard dependency install from npm (axios). No arbitrary URL downloads or extract steps are present.
- Credentials
- noteOnly WORKSHUB_API_KEY and WORKSHUB_API_URL are used by the code (API_KEY and optional BASE_URL). Those are proportionate to an API-bridge skill. Minor inconsistency: registry lists both as required env vars, but SKILL.md documents WORKSHUB_API_URL as optional with a default.
- Persistence & Privilege
- okThe skill is not marked always:true and does not attempt to modify other skills or system configuration. It runs as a short-lived node process and does not request elevated system privileges or file system access beyond a typical npm install in the skill directory.