Skylv Rate Limit Manager
PassAudited by ClawScan on May 3, 2026.
Overview
The skill is a purpose-aligned rate-limit helper, but users should be careful because credential-related use is suggested without a clear credential setup contract.
This appears safe as an instruction-only rate limit management skill. Before installing or using it with real services, confirm whether it needs API keys, provide only narrowly scoped credentials, and do not rely on it as an actual enforcement dashboard unless you separately configure the needed runtime or storage.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the skill asks for API keys, those keys could allow access to external API accounts or usage information.
The skill may need API credentials for quota checks or service-specific limits, but the credential contract is not declared in metadata. This is purpose-aligned, but users need to understand what credentials are being provided.
Required env vars: none; Primary credential: none; Capability signals: requires-sensitive-credentials
Use service-specific, least-privilege API keys where possible, avoid pasting broad or long-lived secrets into chat, and confirm exactly which service and quota action is being performed.