ClawHub
Back to skill
v0.1.1

Calendly Automation

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:24 AM.

Analysis

The skill is a coherent Calendly automation helper, but it requires Calendly OAuth through Rube MCP and can access or change calendar-related account data.

GuidanceThis appears appropriate for Calendly automation. Before installing, make sure you trust Rube/Composio with the Calendly account you connect, grant the minimum needed permissions, and require clear confirmation before cancellations or organization-level changes.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusNote
SKILL.md
`CALENDLY_CANCEL_EVENT` - Cancel the event [Required] ... Cancellation is IRREVERSIBLE - always confirm with the user before calling

The skill can perform an irreversible account mutation, but it explicitly instructs the agent to confirm with the user first.

User impactA mistaken cancellation could remove a scheduled event and notify invitees.
RecommendationReview event details and affected invitees before approving any cancellation or other account-changing action.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusNote
SKILL.md
Active Calendly connection via `RUBE_MANAGE_CONNECTIONS` with toolkit `calendly` ... follow the returned auth link to complete Calendly OAuth ... Admin rights may be needed for organization or group scope queries

The skill requires delegated Calendly account access through OAuth and may use organization or group-level privileges.

User impactThe agent could access Calendly events, invitees, availability, and potentially organization-level information depending on the permissions granted.
RecommendationAuthorize only the Calendly account and scopes you intend to use, and avoid granting organization/admin permissions unless needed.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
SKILL.md
Automate Calendly operations ... through Composio's Calendly toolkit ... Add `https://rube.app/mcp` as an MCP server

Calendly tool calls and returned data are routed through an external MCP provider, creating a third-party data boundary the user should understand.

User impactCalendly event and invitee information may be processed through Rube/Composio as part of normal operation.
RecommendationReview Rube/Composio’s permissions and privacy handling before connecting a Calendly account, especially for organization data.