Back to skill
Skillv1.0.1
ClawScan security
Boring TikTok Publisher · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 27, 2026, 9:01 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill's requests and instructions are consistent with its stated purpose (publishing to TikTok via the Boring MCP connector), but the MCP connector is a high‑privilege credential and users should understand the privacy and authorization implications before installing.
- Guidance
- This skill appears to do what it says: it uses a Boring MCP connector to upload media and publish to TikTok. Before installing, confirm these items: (1) Understand that the MCP Connector URL contains an embedded auth token and grants Boring permission to act on your TikTok accounts — treat it like a password and only paste it into trusted places. (2) Media you upload will be stored on Boring's Google Cloud Storage and forwarded to TikTok, so do not upload content you consider highly sensitive unless you trust Boring's handling and retention policies. (3) Verify the Boring service/website and its privacy/security docs (who can access stored media, retention, and ability to revoke tokens). (4) Prefer using draft mode for initial tests to avoid accidental public posts. (5) If you are concerned about autonomous posting, restrict how the agent may call skills or require explicit user confirmation before publishing. (6) If you stop using the service, revoke the MCP token in your Boring settings immediately.
Review Dimensions
- Purpose & Capability
- okName/description match the instructions: the SKILL.md shows how to list accounts, upload media, and call boring_publish_post to publish to TikTok. The declared requirement (an MCP Connector link containing an embedded auth token) is consistent with a third‑party service proxying TikTok API calls.
- Instruction Scope
- okRuntime instructions only reference Boring connector calls (boring_list_accounts, boring_upload_file, boring_upload_from_url, boring_publish_post). They ask the agent to upload media (local files, external URLs, Google Drive) which is expected for a publishing tool. No instructions ask the agent to read unrelated system files or environment variables. Note: allowing upload of local file paths and Google Drive links gives the skill access to any media the user supplies.
- Install Mechanism
- okInstruction-only skill with no install spec or code files, so nothing is written to disk or fetched during install. This is a low-risk delivery mechanism and consistent with the skill being a connector wrapper.
- Credentials
- noteNo environment variables are requested, but the skill requires an MCP Connector link that embeds an auth token. That connector is effectively a high‑privilege credential (it grants Boring access to the user's connected TikTok account(s) and can upload/publish on the user's behalf). This is proportionate to the stated purpose, but is sensitive: the MCP link should be treated like a password and may allow broad account actions and media access.
- Persistence & Privilege
- okalways is false (no forced inclusion). Model invocation is enabled (default), which means the agent could call this skill autonomously if permitted — this is platform default behavior. The skill does not request persistent agent changes or system-wide config access.