Hetzner Cloud CLI
ReviewAudited by ClawScan on May 1, 2026.
Overview
This is a coherent instruction-only Hetzner Cloud CLI helper, but it involves cloud infrastructure changes and read/write API token setup, so users should approve actions carefully.
This skill appears benign and purpose-aligned, but it can help operate real Hetzner Cloud infrastructure. Install the CLI from a trusted source, use a narrowly scoped project token where possible, never share the token, and only approve exact commands you understand.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Approved commands could create, change, power-cycle, or reconfigure cloud infrastructure, which may cause cost, downtime, or exposure if misused.
The skill documents high-impact cloud CLI operations, but also explicitly requires user confirmation before create or modify actions, making the authority disclosed and purpose-aligned.
**ALWAYS ask for confirmation** before create/modify operations. Show the exact command and wait for explicit approval.
Review every proposed hcloud command before approving it, especially firewall, power, volume, and network changes.
Anyone or any process with access to the token could potentially manage resources in the configured Hetzner Cloud project.
The setup asks for a Hetzner Cloud API token with write permissions. This is expected for infrastructure management, but it is sensitive account authority.
Generate new token (read+write permissions)
Use a project-specific token, avoid sharing or pasting it into chat, rotate it if exposed, and approve infrastructure changes only as the account owner.
The installed CLI will be used to manage cloud resources, so a compromised or incorrect package source would be impactful.
The skill relies on installing the external hcloud CLI through user-directed package-manager commands. This is central to the skill purpose, but users should still trust their package source.
brew install hcloud
Install hcloud from trusted package repositories or the referenced Hetzner Cloud CLI repository, and verify the binary before using it with a write-capable token.