Back to skill
Skillv1.0.3
ClawScan security
Graylog Log Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 8, 2026, 7:02 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions are consistent with a Graylog search helper, but it relies on an external npm package fetched at runtime (npx) which you should inspect before use.
- Guidance
- This skill appears to be what it claims (Graylog search) but it relies on an external npm package that is not included in the registry. Before installing or running it: (1) inspect the mcp-server-graylog@1.0.3 package source (GitHub/npm) to ensure it’s trustworthy; (2) prefer installing packages locally under controlled accounts rather than running npx with production credentials; (3) use a least-privilege Graylog API token (short-lived or limited-scope service account) and avoid exposing tokens in shared logs/CI; (4) pin versions and review release notes/releases for the npm package; (5) consider running the connector in an isolated environment (sandbox/VPC) and monitoring its network activity. If you cannot review the external npm package, treat this integration as higher risk.
Review Dimensions
- Purpose & Capability
- okName, description, and required env vars (BASE_URL, API_TOKEN) align with a Graylog search/monitoring skill; nothing requested is obviously unrelated to log searching.
- Instruction Scope
- noteSKILL.md stays within log-search and monitoring tasks and does not request unrelated files or secrets, but it instructs the agent/operator to install/run an external MCP server (mcp-server-graylog) via npm/npx which will execute code outside the skill bundle.
- Install Mechanism
- concernThe registry package contains no code and the README directs users to npm/npx (mcp-server-graylog@1.0.3). That means runtime code will be fetched and executed from the public npm registry (moderate risk); the registry did not include or vet that package content.
- Credentials
- okOnly BASE_URL and API_TOKEN are required, which are appropriate and proportional for connecting to a Graylog instance; primary credential is API_TOKEN as declared.
- Persistence & Privilege
- okSkill is not always-enabled and does not request modifying global agent settings; no persistence or elevated privileges are requested by the skill manifest.