Miniflux
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: openclaw-miniflux Version: 0.1.5 The skill bundle is classified as benign. The `SKILL.md` provides clear, transparent instructions for setting up and using a Miniflux RSS reader management tool. It instructs the user to download a prerequisite binary (`openclaw-miniflux-mcp`) from a legitimate GitHub Releases page or install via Cargo, and to configure necessary environment variables for authentication to a Miniflux instance. These actions, while involving external binary execution and credential handling, are directly aligned with the skill's stated purpose and are not indicative of malicious intent, data exfiltration, persistence, or prompt injection attempts. The inclusion of 'Guardrails' further supports a responsible design.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may be able to unsubscribe from feeds, rename or delete categories, bulk-import feeds, mark entries as read, or change bookmarks when those actions are requested.
The skill exposes account-changing tools. This matches the Miniflux management purpose, but these actions can alter or delete RSS account data.
Agents can browse feeds, search entries by status or date, read specific articles, check categories, and (if not in read-only mode) create/update/delete feeds and categories, import OPML, mark entries as read, and toggle bookmarks.
Use read-only mode if you only want browsing, and explicitly confirm destructive or bulk changes such as deletes, OPML imports, and large mark-read operations.
Anyone with access to the configured token or password could read or modify the Miniflux account according to the credential’s permissions.
The integration requires Miniflux account credentials or an API token so the MCP server can act on the user’s account. This is expected for the stated purpose, but it is still sensitive authority.
"MINIFLUX_API_TOKEN": "<your-api-token>" ... "MINIFLUX_USERNAME": "<username>", "MINIFLUX_PASSWORD": "<password>"
Prefer an API token over a password, protect the MCP configuration file, use HTTPS for non-local Miniflux URLs, and choose read-only mode when write access is unnecessary.
Installing the wrong or compromised helper binary could expose the Miniflux credentials configured for this integration.
The skill depends on an external MCP binary that is not included in the provided artifact set and is not pinned to a specific version. This is disclosed and central to the skill, but users should verify the dependency they install.
Download the latest binary for your platform from [GitHub Releases](https://github.com/sinhong2011/openclaw-skill-miniflux/releases) ... Or install via Cargo: cargo install openclaw-miniflux-mcp
Install only from the expected project source, prefer a known release version, verify checksums or signatures if available, and review the helper project before granting credentials.