Back to skill
Skillv1.0.0
ClawScan security
Blinko Api · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 5, 2026, 9:38 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and instructions match its stated purpose (a small CLI client for a Blinko HTTP API); nothing requests unrelated credentials or installs arbitrary code, though the SKILL.md and metadata disagree about declared env requirements.
- Guidance
- This skill is a small, self-contained Python CLI that talks to a Blinko HTTP API. It behaves as advertised: you should set BLINKO_HOST and BLINKO_TOKEN in your environment before use. Two practical checks before installing/using: (1) verify the BLINKO_HOST points to a server you control or trust (the script will send requests there), and (2) treat BLINKO_TOKEN like any API secret — don’t expose it in shared shells or logs. Note the registry metadata omitted the env variables used by the script; that mismatch is likely benign but worth being aware of. If you plan to let an agent call this autonomously, ensure the agent is allowed to talk to the configured host and that the token’s privileges are limited.
Review Dimensions
- Purpose & Capability
- noteName/description (manage notes/blinkos) aligns with the included Python client which calls /v1/note/... endpoints. One minor inconsistency: registry metadata lists no required env vars, but the SKILL.md and the script read BLINKO_HOST and BLINKO_TOKEN (optional defaults applied). This is likely an omission in metadata, not a functional mismatch.
- Instruction Scope
- okSKILL.md instructs the user to set BLINKO_HOST and BLINKO_TOKEN and to run the provided Python script for list/get/upsert/delete/promote operations. The runtime instructions only reference the API host/token and standard CLI use; they do not ask the agent to read arbitrary system files or exfiltrate unrelated data.
- Install Mechanism
- okNo install spec; skill is instruction-only plus a small bundled Python script. There are no downloads or install actions that would write or execute remote code.
- Credentials
- noteThe script uses BLINKO_HOST and BLINKO_TOKEN from the environment (with sensible defaults: localhost and empty token). Because the registry metadata did not declare these as required, users may not be warned about needing an API token. Requiring a token for API access is reasonable, but ensure you only set BLINKO_HOST to servers you trust and keep BLINKO_TOKEN secret.
- Persistence & Privilege
- okThe skill is not always-enabled and does not request elevated privileges, persistent installation, or modification of other skills. It runs only when invoked and only performs outbound HTTP requests to the configured host.