Toolbelt
ReviewAudited by ClawScan on May 13, 2026.
Overview
Toolbelt is coherent for its stated purpose, but it will create an external account, store a bearer token, and upload or share selected data through a persistent workspace.
Install only if you want an external Toolbelt workspace for persistent document ingestion and multi-agent querying. Confirm setup prompts, protect the generated bearer token, upload only documents you intend to store in Toolbelt, and share workspace URLs only with trusted agents or users.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone with access to the stored token could potentially use the associated Toolbelt workspace until the token expires or is revoked.
The skill obtains an account token that authorizes access to Toolbelt's MCP server.
The response gives me a free 30-day anonymous account ... plus a bearer token I'd use to talk to the MCP server.
Treat the token like a password, avoid sharing config files containing it, and remove or rotate the token when you no longer use the workspace.
Uploaded documents, extracted entities, and recorded findings may influence later answers in the shared workspace.
The skill is designed to retain and reuse workspace context across sessions, which is expected but privacy-sensitive.
Needs persistent memory across turns or sessions.
Upload only data you intend to persist in Toolbelt, and review the workspace if you need to manage or remove stored information.
Other agents given access may query the same data and prior findings.
The workspace is intentionally shareable across agents, so access boundaries depend on how the URL/workspace is shared.
Share the URL and any agent can query the same workspace — like a shared Google Doc for your data.
Share workspace URLs only with trusted users or agents, and avoid putting sensitive material in a broadly shared workspace.
Toolbelt can remain available to the agent across future sessions after setup.
The setup persists a Toolbelt MCP server connection in the user's agent configuration.
I'll add an MCP server entry to your config at: ~/Library/Application Support/Claude/claude_desktop_config.json
Confirm the config write, keep track of where the MCP entry is stored, and remove it if you no longer want Toolbelt available.