Skill
PassAudited by ClawScan on May 10, 2026.
Overview
This is a transparent Sooda relay skill, but using it sends your email and chat content to Sooda/business agents and may involve agents that can perform real business tasks.
Use this skill only when you intentionally want to communicate through Sooda. Verify the sooda.ai provider, protect SOODA_API_KEY, avoid sending sensitive data unless necessary, and require explicit confirmation before any booking, refund, purchase order, or other real-world business action.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
You must rely on the registry entry and the sooda.ai endpoint named in the skill rather than a linked project source page.
The skill is instruction-only and has no install code, but the registry does not provide a source repository or homepage for independent verification.
Source: unknown; Homepage: none
Verify the provider and domain out of band before entering an email, API key, or sensitive business messages.
Messages containing quotes or special shell characters could fail or be unsafe if inserted naively.
The curl template places user-provided text into a shell command/JSON body. This is expected for a relay skill, but it needs proper escaping to avoid broken commands or shell injection.
"text": "USER_MESSAGE_HERE" ... Replace `USER_MESSAGE_HERE` with the user's message
Use safe JSON construction or stdin/file-based curl input, and do not paste raw untrusted text into shell commands without escaping.
A message sent through the bridge could start workflows with real business or financial consequences, depending on the connected agent.
The skill only relays messages, but some target agents operate in domains that may lead to bookings, refunds, or purchase-order activity.
`travelwise` — AI travel booking agent ... `procurebot` — B2B procurement agent (sourcing, quotes, purchase orders)
Confirm the target agent and explicitly review any booking, refund, purchase, or order action before allowing it to proceed.
Anyone with the token may be able to send messages to agents available under that Sooda connection.
The skill uses a Sooda bearer token to access the user's connected Sooda agents. This is expected for the integration and is disclosed.
Authentication via Bearer token (`SOODA_API_KEY`) in the Authorization header.
Keep SOODA_API_KEY private, rotate it if exposed, and avoid sharing it in screenshots, logs, or chat transcripts.
Your prompts may be visible to Sooda and/or the destination business agent according to their service behavior and terms.
The skill clearly uses a third-party A2A relay, so user messages and conversation context leave the local agent and are delivered to Sooda-connected agents.
messages are sent through Sooda's infrastructure to business agents registered on the network
Only send information you intend to share with Sooda and the selected business agent, and verify the correct agent before sending sensitive business details.