Back to skill
Skillv1.1.0
ClawScan security
KitchenOwl API · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 8, 2026, 10:50 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and instructions are consistent with its stated purpose (a CLI helper for KitchenOwl APIs); it requires only curl/jq and stores session tokens locally, which is proportionate to the task.
- Guidance
- This skill appears to do what it claims: a small bash CLI to talk to KitchenOwl instances. Before using it, confirm you trust the target KitchenOwl instance (the script will send your username/password and tokens to the base URL you provide). Note that it requires curl and jq (mentioned in SKILL.md but not declared in registry metadata). Sessions/tokens are stored unencrypted at ~/.config/kitchenowl-api/session.json — consider protecting that file (restrict permissions) or using short-lived tokens. If you want extra caution, review the script locally, run it manually rather than granting autonomous agent invocation, and point it only at trusted self-hosted or official cloud endpoints.
Review Dimensions
- Purpose & Capability
- okName/description, SKILL.md, and the included shell script all align: the script implements login, token handling, REST/GraphQL requests, and probing endpoints for KitchenOwl. The environment variables the script uses (KITCHENOWL_URL/TOKEN/REFRESH_TOKEN) are appropriate for the described purpose.
- Instruction Scope
- noteSKILL.md instructs the agent to run the included script and documents expected env vars and flows (probe/login/request/graphql). The script only touches expected paths (creates ~/.config/kitchenowl-api/session.json and uses /tmp for probe output). Minor mismatch: registry metadata lists no required binaries, but SKILL.md and the script require curl and jq.
- Install Mechanism
- okNo install spec is present (instruction-only plus an included script), so nothing is downloaded or executed from external URLs during install. The included bash script is static and readable in the bundle.
- Credentials
- noteThe only secrets involved are KitchenOwl tokens/credentials which are necessary for API operations; however, the registry metadata did not declare these env vars as required. The script saves tokens unencrypted to ~/.config/kitchenowl-api/session.json (documented in SKILL.md), which is functional but has privacy implications the user should consider.
- Persistence & Privilege
- okalways:false and the skill does not request system-wide changes or modify other skills. It persists its own session file under the user's home directory, which is expected behavior for a CLI session helper.