ClawHub

Matrix Mate - ITA Matrix Flight Search and Parse Tool

v1.0.3

Matrix Mate — ITA Matrix flight search and parse tool for parsing ITA Matrix itinerary links, auditing fare rules, and producing traveler-safe summaries thro...

0· 127·0 current·0 all-time
byGerald He@skylinehk
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match the code and bundles: the skill implements a local MCP server that forwards parse requests to a Matrix Mate HTTP service (default http://127.0.0.1:3000). Required binaries (node, npm) and the declared install dependency (@modelcontextprotocol/sdk) are proportional to an MCP-based Node skill.
Instruction Scope
SKILL.md and README instruct running a local stdio MCP and using browser automation only for read/search capture. Runtime scripts only access bundled example files, local filesystem to resolve the skill root, and the local Matrix Mate HTTP endpoints. The project explicitly calls out prompt-injection risk from itinerary/rules text and recommends treating tool output as data; that is appropriate and should be heeded.
Install Mechanism
Install spec pulls an npm package (@modelcontextprotocol/sdk) and the bundle includes package.json/package-lock.json. No arbitrary downloads, IP addresses, URL shorteners, or extract-from-unknown-host steps are present. This is a normal Node/npm install pattern (moderate trust surface from npm but expected).
!
Credentials
The code reads optional environment variables (MATRIX_MATE_BASE_URL and MATRIX_MATE_ALLOW_REMOTE_BASE_URL) to override the local base URL and to opt into non-loopback hosts, but the skill metadata lists no required env vars. While these vars are operator-controlled and the code enforces loopback by default, the SKILL.md/registry metadata should declare these env vars so operators know about them before install. Requiring MATRIX_MATE_ALLOW_REMOTE_BASE_URL to enable remote hosts is an important security-sensitive override and should be highlighted in metadata.
Persistence & Privilege
The skill is not always-enabled, does not request elevated platform privileges, and does not modify other skills or system-wide agent settings. It runs as a local MCP server invoked by the agent when used (standard behavior).
Scan Findings in Context
[base64-block] expected: Scanner flagged a base64-like block — this corresponds to the encoded `search=` payload in the example ITA Matrix link (assets/examples/sample-link.txt) and is expected for an ITA Matrix parsing skill. The finding appears to be a false positive in this context, but treat any incoming encoded payloads as untrusted input.
Assessment
This skill appears to do what it says: it expects you to run a local Matrix Mate app and to run npm install in the bundle root before starting the MCP server. Things to check before installing or running: 1) Be aware of and document the optional env vars MATRIX_MATE_BASE_URL and MATRIX_MATE_ALLOW_REMOTE_BASE_URL — by default network calls are restricted to loopback, only set the override if you trust a remote host. 2) Treat any pasted itinerary JSON or fare-rule text as untrusted input (the skill notes prompt-injection risk). 3) Review and run npm install in a controlled environment (npm packages are pulled from the registry). 4) The bundle does not require API keys or credentials; if you are asked later to add credentials or point to a hosted endpoint, reassess. Overall the bundle is coherent and local-first; the main fix I recommend is to declare the optional environment variables in the skill metadata so operators see them up front.
scripts/runtime/client.mjs:15
Environment variable access combined with network send.
Confirmed safe by external scanners
Static analysis detected API credential-access patterns, but both VirusTotal and OpenClaw confirmed this skill is safe. These patterns are common in legitimate API integration skills.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ck80pk88m35yq2bzdtc4dv983fk1x

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binsnode, npm

Install

Install MCP runtime dependencies (run npm install in the skill bundle root)npm i -g @modelcontextprotocol/sdk

Comments