Back to skill
Skillv1.0.0
ClawScan security
Web Search Tavily · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 14, 2026, 1:16 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requests, files, and runtime instructions match its stated purpose (AI-optimized web search via AIsa/Tavily) and only require a single API key and Node to operate.
- Guidance
- This skill appears to do what it claims: the included scripts POST your query/URLs to AIsa's Tavily endpoints (https://api.aisa.one). Before installing, consider: (1) Any queries or URLs you send will be transmitted to a third-party API — avoid sending PII or sensitive tokens. (2) Use a least-privilege/monitored API key from AIsa if possible and review its usage logs and rate limits. (3) Verify the publisher/homepage (aisa.one) and the owner identity if provenance matters — there is a small ownerId mismatch in the package metadata that you may want to confirm. If those points are acceptable, the skill is internally consistent and proportionate.
Review Dimensions
- Purpose & Capability
- noteName/description, required binaries (node), and required env var (AISA_API_KEY) are coherent with a web-search gateway proxy. Minor metadata inconsistency: the _meta.json ownerId differs slightly from the registry Owner ID shown in the package metadata — likely benign but worth verifying the publisher if provenance matters.
- Instruction Scope
- okSKILL.md instructs running the included Node scripts (search.mjs and extract.mjs) with clearly scoped arguments. The instructions reference only AISA_API_KEY and the included scripts, and do not instruct reading unrelated files, credentials, or system state.
- Install Mechanism
- okNo install spec; this is primarily instruction-only plus small included scripts. No packages or external download/install steps are performed by the skill itself, so nothing is written to disk beyond the provided files.
- Credentials
- okOnly AISA_API_KEY is required (declared as primary credential). The scripts use that key to call https://api.aisa.one endpoints; no other secrets, config paths, or unrelated credentials are requested or accessed.
- Persistence & Privilege
- okalways is false and disable-model-invocation is false (normal). The skill does not request persistent system privileges or modify other skills' configs.