Pipeworx fda
v1.0.0US FDA open data — adverse drug event reports, drug labeling/package inserts, and food recall enforcement actions
⭐ 0· 68·0 current·0 all-time
byBruce Gutman@b-gutman
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description (FDA open data) matches the actual behavior: the skill instructs the agent to query a Pipeworx gateway that returns FAERS, labeling, and recall data. However, the SKILL.md's MCP config references running 'npx mcp-remote', yet the declared required binaries only list 'curl' — a minor inconsistency in declared requirements versus recommended usage.
Instruction Scope
Instructions are limited to querying an external API (gateway.pipeworx.io) and include example curl calls. They do not request local file reads or extra environment variables. Be aware that queries (including any user-supplied text) will be sent to a third party; avoid sending sensitive or private data.
Install Mechanism
The skill is instruction-only (no install spec), which is low-risk. However, the provided MCP config recommends using 'npx mcp-remote@latest' to register a remote tool; running that command will download and execute third‑party npm code. The skill itself does not force that install, but the instructions encourage running remote code — a potential risk if you don't trust the publisher.
Credentials
No environment variables, credentials, or config paths are requested by the skill, which is proportional for accessing public FDA data. There is nothing requesting unrelated secrets or system credentials.
Persistence & Privilege
The skill does not request permanent inclusion (always:false). The MCP config suggests adding a remote MCP server entry to agent config; if you follow that, the remote server could be invoked by the agent — consider whether you trust the remote operator before adding it to your agent configuration.
What to consider before installing
This skill appears to be a simple proxy to Pipeworx's FDA gateway and needs only curl to run the example queries. Before installing or running it: 1) Verify you trust https://gateway.pipeworx.io and the pipeworx.io publisher — your queries (and any data you include) will be sent there. 2) Do not send PHI, passwords, or other secrets in queries. 3) If you plan to use the MCP config, understand that 'npx mcp-remote@latest' downloads and runs code from npm; only run it if you trust that package. 4) Note the minor inconsistency: SKILL.md suggests npx but the skill only declares curl; ensure the runtime has any tools you intend to use.Like a lobster shell, security has layers — review code before you run it.
Runtime requirements
💊 Clawdis
Binscurl
latest
FDA Open Data
Search the US Food and Drug Administration's public databases. Pull adverse drug event reports (FAERS), look up drug labeling and package inserts, and browse food recall enforcement actions. All data is open and requires no API key.
Tools
| Tool | Description |
|---|---|
search_drug_events | Search FDA adverse drug event (FAERS) reports by drug name, reaction, or keyword |
search_drug_labels | Search drug labeling / package inserts by brand name, generic name, or active ingredient |
search_food_recalls | Search food recall enforcement actions by product name, company, or reason |
Use cases
- Investigating reported side effects for a specific medication
- Looking up official prescribing information and contraindications
- Monitoring food recalls for safety-critical applications
- Pharmacovigilance research across the FAERS database
Example: adverse events for metformin
curl -s -X POST https://gateway.pipeworx.io/fda/mcp \
-H "Content-Type: application/json" \
-d '{"jsonrpc":"2.0","id":1,"method":"tools/call","params":{"name":"search_drug_events","arguments":{"query":"metformin","limit":3}}}'
Returns reported reactions, drug dosage info, patient demographics, and outcome classifications.
MCP config
{
"mcpServers": {
"pipeworx-fda": {
"command": "npx",
"args": ["-y", "mcp-remote@latest", "https://gateway.pipeworx.io/fda/mcp"]
}
}
}
Comments
Loading comments...