Back to skill
Skillv1.0.0
VirusTotal security
Web Search Tavily · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignApr 30, 2026, 3:56 AM
- Hash
- d6b949992543d646599988787d71e4475f47e28fd4f83b18671e9f7293eca5cb
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: ai-native-websearch-via-tavily-api-returns-concise-relevant-results-for-openclaw Version: 1.0.0 The skill bundle provides web search and content extraction functionality via the AIsa Tavily API. All scripts (`scripts/extract.mjs`, `scripts/search.mjs`) make HTTPS POST requests to `https://api.aisa.one`, authenticating with an `AISA_API_KEY` retrieved from environment variables, as declared in `SKILL.md`. Input parameters (queries, URLs) are safely incorporated into JSON request bodies using `JSON.stringify`, preventing injection vulnerabilities at the API call level. There is no evidence of data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, obfuscation, or prompt injection attempts against the AI agent in `SKILL.md`. The code adheres to its stated purpose and uses standard, secure practices.
- External report
- View on VirusTotal