claw-integration-design
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive security guidance for designing agent-facing APIs. It correctly identifies and promotes security best practices, including tenant isolation (workspace scoping), granular authorization scopes via OAuth2, and the principle of least privilege.
- [SAFE]: No malicious patterns, such as prompt injection, credential harvesting, or unauthorized network operations, were detected. The skill uses placeholders (e.g.,
<your-domain>,sk_...) for sensitive configuration items. - [SAFE]: The skill proactively addresses security risks by recommending a 'Capture/Inbox' model, which serves as a mitigation against automated malicious writes by requiring human review for agent-generated content.
- [SAFE]: The provided tools manifest and API examples follow standard web development practices, including the use of idempotency keys and structured error formatting.
Audit Metadata