clickup-cost-tuning
Optimizes ClickUp API usage costs through effective plan selection and request reduction strategies.
Install this skill
Security score
The clickup-cost-tuning skill was audited on May 23, 2026 and we found 12 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 53 | const key = `spaces:${teamId}`; |
Template literal with variable interpolation in command context
| 56 | const data = await clickupRequest(`/team/${teamId}/space?archived=false`); |
Template literal with variable interpolation in command context
| 72 | return clickupRequest(`/list/${listId}/task?${new URLSearchParams({ |
Template literal with variable interpolation in command context
| 109 | await clickupRequest(`/team/${teamId}/webhook`, { |
Webhook reference - potential data exfiltration
| 102 | ### 4. Use Webhooks Instead of Polling |
Webhook reference - potential data exfiltration
| 108 | // Good: register webhook, process events on-demand (0 polling requests) |
Webhook reference - potential data exfiltration
| 109 | await clickupRequest(`/team/${teamId}/webhook`, { |
Webhook reference - potential data exfiltration
| 112 | endpoint: 'https://myapp.com/webhooks/clickup', |
Webhook reference - potential data exfiltration
| 167 | | Cache stale data | TTL too long | Invalidate via webhooks | |
Webhook reference - potential data exfiltration
| 169 | | Polling overhead | No webhook setup | Switch to event-driven | |
External URL reference
| 112 | endpoint: 'https://myapp.com/webhooks/clickup', |
External URL reference
| 173 | - [ClickUp Pricing](https://clickup.com/pricing) |