tl-openmeter-api
Integrates with the OpenMeter REST API for managing usage metering, billing, and customer subscriptions effectively.
Install this skill
or
63/100
Security score
The tl-openmeter-api skill was audited on Mar 19, 2026 and we found 7 security issues across 2 threat categories, including 1 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
medium line 291
Curl to non-GitHub URL
SourceSKILL.md
| 291 | curl http://localhost:8888/api/v1/subscriptions/{id} | jq '.phases[].key' |
medium line 22
Webhook reference - potential data exfiltration
SourceSKILL.md
| 22 | | **tl-openmeter-local-dev** | Local dev setup: Docker, ngrok, Stripe App, webhooks | |
medium line 51
Webhook reference - potential data exfiltration
SourceSKILL.md
| 51 | | 3 | **App: Stripe** | Stripe billing support (API key, webhook, checkout) | |
medium line 383
Webhook reference - potential data exfiltration
SourceSKILL.md
| 383 | | Stripe webhook | POST | `/api/v1/apps/{id}/stripe/webhook` | |
high line 22
Ngrok tunnel reference
SourceSKILL.md
| 22 | | **tl-openmeter-local-dev** | Local dev setup: Docker, ngrok, Stripe App, webhooks | |
low line 69
External URL reference
SourceSKILL.md
| 69 | - **Base URL:** `OPENMETER_URL` (e.g. `http://localhost:8888` for local, or your deployed URL) |
low line 291
External URL reference
SourceSKILL.md
| 291 | curl http://localhost:8888/api/v1/subscriptions/{id} | jq '.phases[].key' |
Scanned on Mar 19, 2026
View Security DashboardInstall this skill with one command
/learn @toddlevy/tl-openmeter-apiRate this skill
Categorymarketing
UpdatedMarch 29, 2026
openclawapigrowth-marketerproduct-marketersales-engineerbusiness-developmentcustomer-success-managerstripemarketingsales
toddlevy/tl-agent-skills