Application Tracker
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: application-tracker Version: 1.0.1 The application-tracker skill facilitates a web form autofill workflow by interacting with a local API service at 127.0.0.1:8010. The SKILL.md instructions enforce a human-in-the-loop process, requiring explicit user approval before executing actions and explicitly forbidding automatic form submission. No evidence of data exfiltration, malicious execution, or prompt injection was found.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
After the user approves, the local service may enter personal details into an external application form, though the skill says it must not submit the form automatically.
The skill directs the agent to call a local API that can execute autofill actions. This is purpose-aligned and approval-gated, but it is still a tool-driven action that can change fields on a web form.
`POST http://127.0.0.1:8010/api/form/fill/review` ... `{"thread_id":"<thread_id>","decision":"approve","feedback":"优先填写项目经历","max_actions":20}`Only approve after reviewing the preview, keep manual final submission, and verify the target form URL before using autofill.
If an unexpected or untrusted process is listening on localhost port 8010, the agent could send form URLs and profile data to the wrong service.
The skill depends on an existing localhost service and curl-style command execution, while no code or install mechanism is supplied in the artifacts. This is not hidden, but users should ensure the local service is legitimate.
## Command templates (exec tool + curl) ... `curl -sS -X POST "http://127.0.0.1:8010/api/form/fill/start"`
Confirm which local application provides `127.0.0.1:8010` before invoking the skill, and avoid using it if the local service source is unknown.
Personal application details and preview information may remain available in pending local workflow state.
The workflow sends personal profile data into a local fill thread and supports listing pending threads, indicating local workflow state may exist until approved or rejected.
`{"url":"<target_url>","profile":{...},"max_actions":20}` ... `GET http://127.0.0.1:8010/api/form/fill/pending`Use the smallest necessary profile data, reject/close unneeded threads, and avoid including secrets or unrelated personal information.