ClawHub

Bricklink

PassAudited by VirusTotal on May 12, 2026.

Overview

Type: OpenClaw Skill Name: bricklink Version: 1.4.2 The OpenClaw AgentSkills skill bundle for BrickLink is classified as benign. The Python script `scripts/bricklink.py` correctly implements OAuth 1.0 for API authentication, loading credentials securely from environment variables or a workspace-specific `config.json`. Crucially, file input (`create-inventory --file`) and output (`order-detail-html --out`) operations are rigorously sanitized by `scripts/_pathguard.py` and `_load_batch_file` to prevent path traversal, restricting access to the workspace or `/tmp` directories. All network requests are directed to legitimate BrickLink API and image domains, and the `SKILL.md` documentation contains no prompt injection attempts or malicious instructions for the AI agent.

Findings (0)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Note
ASI02: Tool Misuse and Exploitation
What this means

If an agent or user invokes the wrong mutating command, it could change order fields or statuses, create/update/delete inventory, send order email, or post/reply to feedback.

Why it was flagged

The skill intentionally exposes account-changing BrickLink operations, and the documentation discloses that they run without an extra confirmation step once invoked.

Skill content
**Write operations** (update-order, create-inventory, etc.) execute immediately — double-check parameters before running
Recommendation

Use read-only commands by default and require explicit user confirmation before any update, delete, feedback, or email-sending command.

Note
ASI03: Identity and Privilege Abuse
What this means

Anyone or any agent process with access to these credentials can read store/order information and perform allowed store API actions.

Why it was flagged

BrickLink OAuth credentials are necessary for the advertised API integration, but they allow the skill to act through the user's BrickLink account.

Skill content
You need OAuth 1.0 credentials from BrickLink: Consumer Key, Consumer Secret, Token Value, Token Secret
Recommendation

Store credentials securely, avoid sharing the config file or environment, and revoke or rotate the BrickLink token if it is no longer needed.