ClawHub

AgenticCreed SignUP Lead

v1.0.1

Create a new signup lead in AgenticCreed by submitting contact and personal details via the public HTTP API endpoint.

0· 1.1k·1 current·1 all-time
by@waqas-orcalo·duplicate of @waqas-orcalo/signup-lead
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
SKILL.md and SKILL.yaml clearly describe a lead-creation HTTP POST to https://gateway.agenticcreed.ai/signup-leads and expect an AGENTICCREED_API_KEY. However the registry metadata at the top lists no required env vars or primary credential. The runtime behavior (sending leads to that endpoint) is coherent with the skill name, but the metadata omission is an inconsistency that could mislead automated permission checks.
Instruction Scope
Instructions are narrowly scoped to sending lead fields (email, name, address, DOB, phone, etc.) to the stated endpoint and mapping the JSON response. This is consistent with the stated function, but it will transmit personal data (PII) to an external endpoint; the skill provides no homepage, owner info beyond an opaque owner ID, or privacy/policy details to evaluate whether that data handling is acceptable.
Install Mechanism
Instruction-only skill with no install spec and no code files — minimal on-disk risk. No downloads or build steps are present.
!
Credentials
The SKILL.md and SKILL.yaml require AGENTICCREED_API_KEY (x-api-key header), which is a single API credential appropriate for the integration. However the registry metadata incorrectly lists 'Required env vars: none' and 'Primary credential: none', creating a mismatch between declared requirements and actual runtime needs. That mismatch is a governance/privacy concern and could cause secrets to be omitted or mismanaged.
Persistence & Privilege
The skill does not request always:true or any elevated persistence. It is user-invocable and allows autonomous invocation (platform default), which is expected for skills of this type.
What to consider before installing
Before installing or using this skill: 1) Verify the endpoint and owner — ask for a homepage, documentation, or company identity for gateway.agenticcreed.ai. 2) Only provide an API key that is scoped/minimal (restrict permissions, set expiry) and avoid using high-privilege keys. 3) Be aware the skill will send personal data (email, address, date of birth, phone) to an external service — confirm its privacy and retention policies. 4) Fix the metadata discrepancy: ensure the registry entry declares AGENTICCREED_API_KEY as a required credential so automated tooling can surface that secret requirement. 5) Test with non-sensitive or dummy data first and rotate the API key if you later remove the skill or suspect misuse.

Like a lobster shell, security has layers — review code before you run it.

latestvk9738tsdmr0pyt9q76najzw5tx80yc3c
1.1kdownloads
0stars
2versions
Updated 1mo ago
v1.0.1
MIT-0
@waqas-orcalo
latest
Download

signup_lead

Create a signup lead in the AgenticCreed system using the public HTTP endpoint.

This skill sends lead details (email, name, contact info, etc.) to https://gateway.agenticcreed.ai/signup-leads.

Usage

Use this skill when you need to create a new signup lead with contact information.

Parameters

  • email: Email address (required)
  • firstName: First name (required)
  • lastName: Last name (required)
  • address: Physical address
  • dateOfBirth: Date of birth (ISO format)
  • phoneNumber: Phone number
  • whatsAppNumber: WhatsApp number
  • jobTitle: Job title
  • dateOfJoining: Date of joining (ISO format)

Configuration

Set the AGENTICCREED_API_KEY environment variable before using this skill.

Comments

Loading comments...