ClawHub

Acuity Scheduling

v1.0.2

Acuity Scheduling API integration with managed OAuth. Manage appointments, calendars, clients, and availability. Use this skill when users want to schedule, reschedule, or cancel appointments, check availability, or manage clients and calendars. For other third party apps, use the api-gateway skill (https://clawhub.ai/byungkyu/api-gateway).

3· 5.3k·3 current·5 all-time
by@byungkyu
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
The skill is an Acuity Scheduling integration that calls Maton-managed gateway endpoints. The single required environment variable (MATON_API_KEY) aligns with the described managed-OAuth gateway usage and is appropriate for this purpose.
Instruction Scope
SKILL.md contains explicit examples that only perform HTTP requests to gateway.maton.ai and ctrl.maton.ai using the MATON_API_KEY. It does not instruct reading unrelated local files, other environment variables, or sending data to unexpected endpoints.
Install Mechanism
There is no install spec and no code files to be written to disk (instruction-only). This minimizes local install risk.
Credentials
Only MATON_API_KEY is required, which is proportionate. However the key grants access to the Maton gateway and therefore to users' Acuity connections, appointments, and client data—this is sensitive and requires trust in Maton and the gateway domains (gateway.maton.ai, ctrl.maton.ai, connect.maton.ai).
Persistence & Privilege
The skill is not forced-always, does not request system-level persistence, and does not modify other skills. Autonomous model invocation is allowed (platform default) but not combined with other privilege red flags here.
Assessment
This skill is internally consistent with its description: it simply proxies Acuity API calls through Maton and requires one API key (MATON_API_KEY). Before installing or using it, confirm you trust Maton (review maton.ai, their privacy/security docs, and the ctrl/gateway domains) because the API key can be used to read and modify appointments and client data. Use least-privileged/test accounts where possible, store/revoke the API key securely, and monitor access. If you prefer not to delegate OAuth or a gateway, consider integrating directly with Acuity's official API instead.

Like a lobster shell, security has layers — review code before you run it.

latestvk97b8j6y6ctxccqtvtyhp6wpes80wstd

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧠 Clawdis
EnvMATON_API_KEY

Comments