ClawHub

.Api Gateway.Disabled.20260401 113030

v1.0.0

Connect to 100+ APIs (Google Workspace, Microsoft 365, GitHub, Notion, Slack, Airtable, HubSpot, etc.) with managed OAuth. Use this skill when users want to...

0· 38·1 current·1 all-time
by@tmundi3210·fork of @byungkyu/api-gateway (1.0.74)
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description claim a multi-service API gateway and the SKILL.md, example calls, and many per-service routing references all align with that purpose. Requiring a Maton API key is expected.
Instruction Scope
Instructions only direct network requests to Maton domains (gateway.maton.ai, ctrl.maton.ai) and show how to manage OAuth connections. They do not instruct reading system files or unrelated environment variables. Note: the gateway will forward requests to third-party services, so any data you send will transit Maton.
Install Mechanism
Instruction-only skill with no install spec or extracted downloads; nothing is written to disk or installed by the skill package itself.
Credentials
Only MATON_API_KEY is required, which is proportionate for an API gateway. Reminder: possession of a valid MATON_API_KEY allows calling the gateway and (if user OAuth connections exist) invoking downstream APIs, so protect and scope this key appropriately.
Persistence & Privilege
always is false and there is no indication the skill modifies other skills or system settings. The skill can be invoked autonomously by the agent (default behavior) but that is expected for skills and not a standalone red flag.
Assessment
This skill is internally coherent for a managed OAuth API gateway: it only needs your MATON_API_KEY and sends requests to Maton domains which then proxy to authorized third-party services. Before installing, confirm you trust maton.ai and understand that any requests made via this skill will transit Maton's infrastructure. Treat MATON_API_KEY like any sensitive credential: store it securely, grant the minimum necessary permissions, rotate/revoke if compromised, and review active connections in Maton's dashboard so the gateway cannot access services you haven't explicitly authorized. If you plan to allow autonomous agent actions, consider limiting the agent's permissions or requiring explicit user confirmation for sensitive operations.

Like a lobster shell, security has layers — review code before you run it.

latestvk97ckbtjn6jtswktjd45pwb6f1840bc9

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🧠 Clawdis
EnvMATON_API_KEY

Comments