Is elizabethsiegle/bayclub-gateway-booking safe?

https://github.com/openclaw/skills/tree/main/skills/elizabethsiegle/bayclub-gateway-booking

95
SAFE

This is a legitimate tennis/pickleball court booking automation skill for Bay Club. It handles user credentials appropriately for its stated purpose and shows no signs of malicious behavior. The browser automation is focused on court booking functionality with optional Google Calendar integration.

Category Scores

Prompt Injection 100/100 · 30%
Data Exfiltration 90/100 · 25%
Code Execution 100/100 · 20%
Clone Behavior 100/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 95/100 · 5%

Findings (2)

LOW Credential handling for authentication -10

The skill reads Bay Club credentials from environment variables (BAYCLUB_USERNAME, BAYCLUB_PASSWORD) and optionally Google Calendar credentials for calendar integration. While this is necessary for the skill's legitimate function, it represents a minor data handling concern.

LOW Browser automation capabilities -5

The skill uses Stagehand for browser automation, which provides powerful web interaction capabilities. While the code appears focused on court booking, browser automation tools could theoretically be used for other purposes.