Subgraph Registry
v0.3.2Discover and filter 15,500+ The Graph subgraphs by domain, network, protocol type, or natural language goal with reliability scores and query URLs.
⭐ 0· 181·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The declared purpose (discover/filter The Graph subgraphs) matches the code and SKILL.md: a Node MCP server serves queries against a pre-built SQLite registry. The repository also includes a Python crawl/classify pipeline for building the registry locally; this is plausible (build vs runtime separation) but worth noting because the runtime (npx) is Node-only while the repo contains heavy Python tooling for rebuilding the DB.
Instruction Scope
SKILL.md's runtime instructions are scoped: it runs a local server, downloads a pre-built registry.db from GitHub on first run, and serves queries locally. Queries themselves operate against the local DB and the skill does not instruct reading unrelated system files or exfiltrating secrets. The optional Python builder will read a .env (GATEWAY_API_KEY) if you run it, but that is clearly documented.
Install Mechanism
No install spec is required for usage beyond 'npx subgraph-registry-mcp'. The MCP server will auto-download a registry.db from a raw GitHub URL on first run — a common but higher-risk pattern than purely local-only operation because it fetches remote content and writes it to disk. The download URL points to the named GitHub repo, which matches the skill homepage; no URL shorteners or unknown personal servers are used.
Credentials
The skill declares no required env vars and the MCP server itself does not need secrets to run. The included Python crawler supports an optional GATEWAY_API_KEY (via .env) for building/updating the DB; that's appropriate for the crawler but not required for read-only MCP operation. The node runtime and the optional Graph API key usage are proportionate to the described functionality.
Persistence & Privilege
always is false and the skill is user-invocable only. It writes a registry.db into its data directory when downloading the pre-built DB and can run an HTTP/SSE server on a configurable local port; both behaviors are expected for a local registry service and do not imply excessive platform privileges.
Assessment
This skill appears to be what it says: a pre-built, read-only registry served locally. Before installing, consider the following: 1) The server auto-downloads a registry.db from the skill's GitHub raw URL on first run — if you want to inspect the DB first, clone the repo and review the file or run the server in an isolated/container environment. 2) The package includes Python crawlers that, if you run them, will contact The Graph gateway and can use a GATEWAY_API_KEY from a .env file — only provide credentials if you intend to rebuild/update the registry. 3) The MCP/HTTP server listens on a local port (default 3848) and exposes an SSE endpoint; only enable --http/--http-only if you trust the local network environment. 4) Verify the GitHub repository/release source if provenance matters to you. If you need additional assurance, run the npx command inside a sandbox (container/VM) and/or inspect src/index.js and the downloaded registry.db before allowing remote agents to connect.src/index.js:458
Environment variable access combined with network send.
Confirmed safe by external scanners
Static analysis detected API credential-access patterns, but both VirusTotal and OpenClaw confirmed this skill is safe. These patterns are common in legitimate API integration skills.Like a lobster shell, security has layers — review code before you run it.
latestvk97dvpqgefxpmsbqj3wz4vya0982txh3
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
Binsnode