ClawHub
Back to skill
v1.0.0

get-some-leads

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 7:34 AM.

Analysis

The skill matches its Instantly.ai purpose, but it can use your API key to bulk add leads and activate outbound email campaigns, so it should be reviewed before installation.

GuidanceInstall only if you want an agent to manage Instantly campaigns. Use a least-privilege API key, review the lead list and message content, set safe daily limits and schedules, and require explicit approval before activating any campaign.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityHighConfidenceHighStatusConcern
SKILL.md
Workflow — Follow this order ... Bulk (max 1000 per request): POST /api/v2/leads/add ... Step 5: Activate the campaign ... POST /api/v2/campaigns/{campaign_id}/activate

The documented workflow combines bulk lead import with campaign activation as part of the normal sequence, which can start outbound email automation without an explicit final human confirmation requirement.

User impactA mistaken or overly broad request could create campaigns, add many leads, and activate outreach that affects recipients and the sender's account reputation.
RecommendationRequire an explicit user confirmation before activation, show the lead count and message preview, and default to leaving campaigns in draft until approved.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusConcern
SKILL.md
Required API Scopes ... Leads: leads:create, leads:all, all:create, or all:all ... Campaigns: campaigns:create, campaigns:all, all:create, or all:all

The skill requires delegated Instantly account authority and presents broad account-wide scopes such as all:all as acceptable, which can exceed the narrow create/update actions needed.

User impactIf a broad API key is used, the agent may have more access to the Instantly workspace than necessary for the requested campaign task.
RecommendationUse the narrowest possible Instantly API key scopes, avoid all:all unless absolutely required, and rotate/revoke the key if the skill is no longer needed.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityMediumConfidenceHighStatusNote
SKILL.md
Base URL: https://api.instantly.ai ... leads: [{ "email": "lead1@example.com", "first_name": "Jean", "last_name": "Dupont", "company_name": "Acme SAS", "custom_variables": ... }]

Lead personal data and custom variables are sent to the external Instantly API; this is purpose-aligned but sensitive.

User impactLead emails, names, company details, and custom variables may be uploaded to Instantly as part of campaign setup.
RecommendationOnly upload leads you are authorized to process, avoid unnecessary personal data in custom variables, and confirm compliance with email outreach rules.