How do I install Clawhub?

Clawhub is a local plugin. Install it using npm package: @aiwerk/mcp-server-clawhub and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

Is Clawhub safe to use?

Clawhub scored 5.2/10 (moderate risk) in MCP Marketplace's automated security scan. It has 4 high or critical findings to review. It's listed, but review the security report on this page before installing.

What credentials does Clawhub need?

Clawhub requires the following credentials or environment variables: CLAWHUB_TOKEN. You can find setup instructions on the server detail page.

What AI apps work with Clawhub?

Clawhub uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Clawhub MCP Server

by AIWerk

Developer ToolsModerate5.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

ClawHub.ai skill catalog: search, browse, inspect, and download skills (token unlocks publish).

About

ClawHub.ai skill catalog: search, browse, inspect, and download skills (token unlocks publish).

Security Report

5.2

Moderate5.2Moderate Risk

This is a well-structured MCP server for the ClawHub.ai skill catalog with sound authentication and authorization practices. The code demonstrates proper credential handling (env vars only, no hardcoding), sensible error handling, and intentional permission scoping. Minor code quality observations exist but do not constitute security vulnerabilities. Supply chain analysis found 4 known vulnerabilities in dependencies (1 critical, 3 high severity). Package verification found 1 issue.

7 files analyzed · 9 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

What You'll Need

Set these up before or after installing:

ClawHub API token. Optional: read-only browsing works without it; required to publish or delete.Required

Environment variable: CLAWHUB_TOKEN

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-aiwerk-mcp-server-clawhub": {
      "env": {
        "CLAWHUB_TOKEN": "your-clawhub-token-here"
      },
      "args": [
        "-y",
        "@aiwerk/mcp-server-clawhub"
      ],
      "command": "npx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

@aiwerk/mcp-server-clawhub

MCP server for the ClawHub.ai skill catalog.

Browse, search, inspect, download, and (when authenticated) publish skills from the ClawHub registry through the Model Context Protocol.

Two modes

The server adapts to whether a token is configured:

Mode	Trigger	Available tools
anonymous	`CLAWHUB_TOKEN` unset	10 read-only tools (search, list, get, scan, moderation, file, resolve, download)
authenticated	`CLAWHUB_TOKEN` set	All 14 tools (adds whoami, publish, delete, undelete)

The authenticated tools are simply not registered in anonymous mode — tools/list will not advertise them.

Install

Two ways to run this server — pick the one that fits.

Option 1 — Hosted (zero setup)

No local runtime — if you set a token, it's AES-256-GCM encrypted server-side via HashiCorp Vault.

Sign up at aiwerkmcp.com.
Install ClawHub from the catalog. Leave CLAWHUB_TOKEN empty for anonymous mode (10 read-only tools), or paste a token to unlock all 14.
Point your MCP client (Claude.ai, Cursor, Hermes, …) at your hosted endpoint:
```
https://bridge.aiwerk.ch/u/<your-user-id>/mcp
```
with your Bearer token.

Option 2 — Self-hosted (npx)

Run directly — you manage the token:

npx -y @aiwerk/mcp-server-clawhub

Or in your MCP client config:

{
  "mcpServers": {
    "clawhub": {
      "command": "npx",
      "args": ["-y", "@aiwerk/mcp-server-clawhub"],
      "env": {
        "CLAWHUB_TOKEN": "optional - unlocks publish/delete/whoami"
      }
    }
  }
}

Tools

Read-only (anonymous + authenticated)

Tool	Description
`clawhub_search`	Search skills by query string — primary discovery path
`clawhub_list_skills`	List skills with cursor pagination (see caveat below)
`clawhub_get_skill`	Full details for a skill slug
`clawhub_list_versions`	List all versions of a skill
`clawhub_get_version`	Get a specific version (files + security snapshot)
`clawhub_get_scan`	Security scan result for a version
`clawhub_get_moderation`	Moderation verdict and evidence (response wraps under `moderation`)
`clawhub_get_file`	Fetch a single raw file from a skill
`clawhub_resolve`	Resolve version by content hash
`clawhub_download`	Download skill zip (base64 encoded)

Discovery caveat: the live /skills endpoint applies a default server-side filter that may return an empty items[] for ungated browsing. In practice, prefer clawhub_search — it's the reliable entry point for finding skills by keyword. Use clawhub_list_skills with cursor pagination only when you have a specific filter in mind (e.g. nonSuspiciousOnly=true). The highlightedOnly flag is available on clawhub_search but not on clawhub_list_skills.

Wire shapes worth knowing

Some live API responses differ from the published OpenAPI spec. The types in src/types.ts follow the real wire shape:

clawhub_list_skills → { items: [...], nextCursor } (not skills)
clawhub_list_versions → { items: [...], nextCursor } (not versions)
clawhub_get_moderation → { moderation: { verdict, ... } } (wrapped)
clawhub_whoami → { user: { handle, ... } } (wrapped)
clawhub_get_moderation returns 404 for skills with no moderation events — this means clean, not missing. For the always-present verdict, read .moderation from clawhub_get_skill.

Authenticated only (CLAWHUB_TOKEN required)

Tool	Description
`clawhub_whoami`	Current user (handle, displayName, image)
`clawhub_publish`	Publish a new skill version
`clawhub_delete`	Soft-delete a skill (reversible)
`clawhub_undelete`	Restore a soft-deleted skill

Environment

Variable	Required	Purpose
`CLAWHUB_TOKEN`	no	Bearer token issued by clawhub.ai. Unlocks auth-only tools and raises rate limits (120/min → 600/min for reads).
`CLAWHUB_BASE_URL`	no	Override the API base URL. Defaults to `https://clawhub.ai/api/v1`.

Rate limits

Anonymous: 120 reads/min per IP, 30 writes/min per IP
Authenticated: 600 reads/min per key, 120 writes/min per key

Development

npm install
npm run build
npm test

About AIWerk MCP

Part of the AIWerk MCP platform — curated, signed MCP recipes served either as npm packages for self-hosting or through our multi-tenant hosted bridge (bridge.aiwerk.ch).

Other AIWerk MCP servers:

@aiwerk/mcp-server-cal — Cal.com scheduling
@aiwerk/mcp-server-imap — IMAP/SMTP email, provider-agnostic
@aiwerk/mcp-server-wise — Wise (TransferWise) Personal API, read-only

Browse the full catalog (20+ recipes including GitHub, Linear, Notion, Stripe, …) at aiwerkmcp.com.

License

MIT © AIWerk

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

Clawhub MCP Server

About

Security Report

Findings (9)Action required

Permissions Required

What You'll Need

How to Install

Documentation

@aiwerk/mcp-server-clawhub

Two modes

Install

Option 1 — Hosted (zero setup)

Option 2 — Self-hosted (npx)

Tools

Read-only (anonymous + authenticated)

Wire shapes worth knowing

Authenticated only (CLAWHUB_TOKEN required)

Environment

Rate limits

Development

About AIWerk MCP

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Fetch

Git

Toleno

mcp-creator-python

MarkItDown

FinAgent