appflowy-api

Facilitates authentication and API calls for AppFlowy Cloud, enabling automation and integration with Python scripts.

Install this skill

71/100

Security score

The appflowy-api skill was audited on Mar 3, 2026 and we found 9 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 20

Curl to non-GitHub URL

SourceSKILL.md

20	curl -sS -X POST "http://10.60.0.189/gotrue/token?grant_type=password" \

medium line 27

Curl to non-GitHub URL

SourceSKILL.md

27	curl -sS "http://10.60.0.189/api/search/<workspace_id>?query=test" \

medium line 9

Access to .env file

SourceSKILL.md

9	本 skill 用于自托管 AppFlowy 环境的 API 调用与自动化，覆盖登录鉴权、文档/视图/数据库操作、搜索、协作数据（collab）等常见场景。默认不读取 `.env`，仅在显式传入 `--env <path>` 时读取。

medium line 14

Access to .env file

SourceSKILL.md

14	1. 准备 base URL 与 GoTrue URL（可选 `--env <path>` 读取 `.env`）。

medium line 47

Access to .env file

SourceSKILL.md

47	4. `.env` 文件：仅在传入 `--env <path>` 时读取

low line 56

Access to .env file

SourceSKILL.md

56	# 自检（不会自动读取 .env）

low line 20

External URL reference

SourceSKILL.md

20	curl -sS -X POST "http://10.60.0.189/gotrue/token?grant_type=password" \

low line 27

External URL reference

SourceSKILL.md

27	curl -sS "http://10.60.0.189/api/search/<workspace_id>?query=test" \

low line 93

External URL reference

SourceSKILL.md

93	3. 容器间调用优先使用内部地址（如 `http://gotrue:9999`、`http://appflowy_cloud:8000`）。

Scanned on Mar 3, 2026

View Security Dashboard

Installation guide →

GitHub Stars 278

Rate this skill

Categorydevelopment

UpdatedMay 21, 2026

openclaw api backend backend-developer data-engineer product-manager development product

aiskillstore/marketplace