Jina AI - Web Reader, Search and Deep Search
PassAudited by ClawScan on May 1, 2026.
Overview
This skill appears purpose-aligned for Jina web reading/search, with the main caveat that it sends your URLs, search questions, and Jina API key to Jina and can be invoked by the agent.
Install this if you are comfortable with Jina receiving the URLs, searches, and research prompts used with the skill. Keep JINA_API_KEY private, avoid storing it in shared or committed shell profiles, disable autonomous model invocation if you want manual-only use, and ensure curl/python3 are available for the helper scripts.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Private or sensitive URLs and questions could be disclosed to Jina if used with this skill.
The skill explicitly sends user-provided URLs, search queries, and research questions to an external provider. This is core to the stated function, but users should treat it as data sharing with Jina.
By using this skill, URLs and queries are transmitted to Jina AI (jina.ai). Only install if you trust Jina with your data.
Use this skill only for content you are comfortable sending to Jina, and avoid sensitive internal URLs or confidential research prompts unless Jina is an approved provider.
If the key is exposed through a shared shell profile, logs, or a committed dotfile, someone else could use the user's Jina account quota or access.
The skill requires a Jina API key and suggests storing it persistently in a shell profile. This is expected for the integration, but the key may grant account/API usage and should be protected.
export JINA_API_KEY="your-api-key" Add to your shell profile (`~/.bashrc`, `~/.zshrc`, etc.) for persistence.
Keep the API key out of repositories and shared profiles, use a limited-scope key if Jina supports it, and rotate the key if it may have been exposed.
The agent may send a URL or query to Jina during a task if it decides the skill is useful.
The skill can be called by the agent as part of normal reasoning rather than only through direct manual invocation. This is disclosed and scoped to Jina web read/search actions.
This skill may be invoked autonomously by the model without explicit user trigger
Disable model invocation in skill settings if you want manual-only use, especially when working with sensitive topics or URLs.
The skill may fail or require ad hoc setup on systems without curl or python3.
The script depends on python3 and curl, while the registry requirements list no required binaries. This is an under-declared runtime dependency, not evidence of malicious behavior.
SAFE_URL=$(printf '%s' "$URL" | python3 -c ...)
response=$(curl -s -w "\n%{http_code}" "https://r.jina.ai/${SAFE_URL}"Declare curl and python3 as runtime requirements, or document that users should use the Python reader variant where appropriate.