Application Tracker
PassAudited by ClawScan on May 1, 2026.
Overview
This instruction-only skill is coherent and approval-gated, but it does send personal profile data to a local autofill service that the user should trust before using.
Before installing or using this skill, make sure you trust the local service running on 127.0.0.1:8010, review the preview before approving, do not include unnecessary sensitive information in the profile, and manually check the form before submitting it yourself.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
After the user approves, the local service may enter personal details into an external application form, though the skill says it must not submit the form automatically.
The skill directs the agent to call a local API that can execute autofill actions. This is purpose-aligned and approval-gated, but it is still a tool-driven action that can change fields on a web form.
`POST http://127.0.0.1:8010/api/form/fill/review` ... `{"thread_id":"<thread_id>","decision":"approve","feedback":"优先填写项目经历","max_actions":20}`Only approve after reviewing the preview, keep manual final submission, and verify the target form URL before using autofill.
If an unexpected or untrusted process is listening on localhost port 8010, the agent could send form URLs and profile data to the wrong service.
The skill depends on an existing localhost service and curl-style command execution, while no code or install mechanism is supplied in the artifacts. This is not hidden, but users should ensure the local service is legitimate.
## Command templates (exec tool + curl) ... `curl -sS -X POST "http://127.0.0.1:8010/api/form/fill/start"`
Confirm which local application provides `127.0.0.1:8010` before invoking the skill, and avoid using it if the local service source is unknown.
Personal application details and preview information may remain available in pending local workflow state.
The workflow sends personal profile data into a local fill thread and supports listing pending threads, indicating local workflow state may exist until approved or rejected.
`{"url":"<target_url>","profile":{...},"max_actions":20}` ... `GET http://127.0.0.1:8010/api/form/fill/pending`Use the smallest necessary profile data, reject/close unneeded threads, and avoid including secrets or unrelated personal information.