ClawHub

Telegram Bot

v1.0.2

Telegram Bot API integration with managed authentication. Send messages, manage chats, handle updates, and interact with users through your Telegram bot. Use this skill when users want to send messages, create polls, manage bot commands, or interact with Telegram chats. For other third party apps, use the api-gateway skill (https://clawhub.ai/byungkyu/api-gateway).

9· 6.6k·24 current·26 all-time
by@byungkyu
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
medium confidence
Purpose & Capability
Name/description match the SKILL.md: the skill documents using a Maton gateway to call Telegram Bot API methods. Requested artifacts (MATON_API_KEY) are consistent with a gateway-based integration.
Instruction Scope
SKILL.md contains concrete examples (Python snippets and curl-style requests) that always target maton.ai / ctrl.maton.ai endpoints rather than api.telegram.org. This is expected for a gateway service, but means all bot messages and configuration flows go through Maton — a privacy/third-party routing consideration the user should accept before installing.
Install Mechanism
Instruction-only skill with no install spec and no code files to execute locally, which minimizes risk of arbitrary code being written to disk.
Credentials
Only MATON_API_KEY is required, which is proportionate to a gateway integration. However, that single bearer token appears to control Maton connections and bot tokens; possession of it likely grants broad access to create/delete/manage Telegram connections and send messages, so treat it as highly privileged.
Persistence & Privilege
No always:true, no requested config paths, and default model invocation settings. The skill does not request persistent system-level privileges or modify other skills' configs.
Assessment
This skill is internally consistent: it uses a Maton gateway and only asks for MATON_API_KEY. Before installing, verify you trust the Maton service (maton.ai) and the skill publisher (no homepage/source is provided). Treat MATON_API_KEY as a high-privilege bearer token — create a dedicated key with minimal scope if possible, rotate it regularly, and avoid reusing broader account credentials. Be aware that message contents and bot configuration flows will be routed through maton.ai/ctrl.maton.ai (privacy/third‑party exposure). Because the skill runs networked examples (Python snippets), consider restricting agent autonomy or network access if you need to limit outbound calls. If you need higher assurance, ask the publisher for source code or a homepage and request confirmation of the exact permissions scoped to MATON_API_KEY.

Like a lobster shell, security has layers — review code before you run it.

latestvk9735rtvfsb667g4ecf5artk4s80xm9b

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧠 Clawdis
EnvMATON_API_KEY

Comments