Back to skill
Skillv1.0.0
ClawScan security
UAPI 步骤2 (方法一): 获取加密数据 接口 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 9, 2026, 6:29 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- This skill is an instruction-only wrapper for a single GET /api/get endpoint (Clipzy/UAPI) and its declared requirements and instructions are consistent with that purpose.
- Guidance
- This skill simply documents and wraps a single GET /api/get endpoint on https://uapis.cn/api/v1. Before using it, confirm the user has the correct 'id' and the local decryption key (the service returns encrypted data — decryption is done by you). Be cautious about sharing any decryption keys or API keys: the skill itself doesn’t request them, but the endpoint may accept an API key if you register at uapis.cn. Also remember that calling this skill will make a network request to an external host and may return sensitive encrypted content — ensure you have permission to access that clip and avoid pasting secret keys into chat or other third-party services.
Review Dimensions
- Purpose & Capability
- okThe skill's name/description match the only action it documents: calling GET /api/get to retrieve encrypted clipboard data from the UAPI host. It does not request unrelated credentials, binaries, or filesystem access.
- Instruction Scope
- okSKILL.md and the included reference docs limit the agent to reading the operation docs, checking parameters, and calling the endpoint. It explicitly notes that decryption must be done client-side with the user's key and does not instruct the agent to read local secrets or arbitrary files.
- Install Mechanism
- okNo install spec or code is included; this is an instruction-only skill so nothing is written to disk or downloaded. That is proportionate for a single-endpoint wrapper.
- Credentials
- okThe skill declares no required environment variables or credentials. The docs mention the optional use of a UAPI Key if rate limits are hit, which is a reasonable and proportional recommendation for accessing a hosted API.
- Persistence & Privilege
- okThe skill does not require always:true and does not request system-level privileges or modify other skill configurations. It can be invoked autonomously (platform default), which is expected for a skill of this type.