canva
Enables management of Canva designs and assets via API, allowing for organization, export automation, and template autofill.
Install this skill
or
76/100
Security score
The canva skill was audited on Feb 9, 2026 and we found 8 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 108
Access to hidden dotfiles in home directory
SourceSKILL.md
| 108 | Add to `~/.clawdbot/clawdbot.json` under `skills.entries`: |
medium line 135
Access to hidden dotfiles in home directory
SourceSKILL.md
| 135 | Opens browser for OAuth consent. Tokens stored in `~/.clawdbot/canva-tokens.json`. |
medium line 249
Access to hidden dotfiles in home directory
SourceSKILL.md
| 249 | | `~/.clawdbot/canva-tokens.json` | OAuth tokens (encrypted) | |
medium line 250
Access to hidden dotfiles in home directory
SourceSKILL.md
| 250 | | `~/.clawdbot/canva-cache.json` | Response cache | |
low line 33
External URL reference
SourceSKILL.md
| 33 | homepage: https://canva.dev/docs/connect/ |
low line 94
External URL reference
SourceSKILL.md
| 94 | 1. Go to [canva.com/developers/integrations](https://canva.com/developers/integrations) |
low line 103
External URL reference
SourceSKILL.md
| 103 | 4. Set OAuth redirect: `http://127.0.0.1:3001/oauth/redirect` |
low line 228
External URL reference
SourceSKILL.md
| 228 | Base URL: `https://api.canva.com/rest` |
Scanned on Feb 9, 2026
View Security Dashboard