claw-integration-design
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of documentation, architectural references, and JSON templates for API design. No executable scripts, binaries, or automated installation commands are included.
- [SAFE]: The content promotes the principle of least privilege through a granular scope model (e.g., separating 'read:items' from 'write:items:delete') and recommends production-grade authentication via OAuth2 with PKCE.
- [SAFE]: Architectural guidelines emphasize multi-tenant isolation, requiring tenant identifiers in all requests to prevent cross-account data exposure.
- [SAFE]: Recommends a 'Capture/Inbox' model for agent writes, which introduces a manual human review step before agent-provided data is persisted, effectively mitigating risks associated with automated malicious data entry or unintentional actions.
Audit Metadata