Back to skill
Skillv1.0.0
ClawScan security
Pilot Webhook Bridge · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 9, 2026, 12:35 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and instructions match its stated purpose (forwarding Pilot Protocol events to HTTP webhooks); nothing requested is disproportionate or unrelated, but forwarding events to external endpoints carries expected data-leakage risks the user should consider.
- Guidance
- This skill is internally consistent for forwarding Pilot events to webhooks, but be aware of data-exfiltration risk: any events you subscribe to will be POSTed to the webhook destinations you configure. Treat webhook URLs as sensitive secrets, use topic filters to limit forwarded data, validate destination endpoints (TLS, trusted services), and avoid forwarding events that may contain PII or credentials. If you need stricter controls, run subscriptions behind a filtering/transformation step (the SKILL.md itself recommends using an event-filter) or route through a trusted proxy that enforces policies and auditing before delivery.
Review Dimensions
- Purpose & Capability
- okName/description require pilotctl, curl, and jq and the SKILL.md shows exactly those tools used to subscribe to Pilot events and POST them to webhooks; required binaries and stated purpose are coherent.
- Instruction Scope
- noteInstructions subscribe to Pilot events and POST event JSON to external webhooks. This is exactly the declared behavior, but it inherently forwards potentially sensitive event data out of the environment; the skill does not read unrelated files or environment variables.
- Install Mechanism
- okNo install spec or code files — instruction-only. Nothing is downloaded or written to disk by the skill itself, which minimizes install-time risk.
- Credentials
- okNo environment variables, credentials, or config paths are requested by the skill. Webhook URLs are shown as variables in examples (user-supplied), which is appropriate for this functionality.
- Persistence & Privilege
- okalways is false and there is no attempt to modify other skills or agent-wide config. The skill relies on an existing pilotctl daemon and trust relationships; it does not request elevated persistence or privileges.