Skillv1.0.0

ClawScan security

tavily-search-aisa · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 18, 2026, 9:32 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, instructions, and declared requirements are consistent with a client for the AISA/Tavily search API; nothing in the package suggests behavior beyond its stated purpose, though the client will send any user-provided queries/URLs to the external AISA service.
Guidance: This skill is a straightforward Python client for the AISA API and requires only your AISA_API_KEY. Before installing or using it: (1) Be aware that any queries, URLs, or content you pass to the client (especially via 'extract' or the multi-source 'verity' flow) will be sent to the external AISA service — do not submit internal/privileged URLs, passwords, or secrets. (2) Verify you trust the AISA service and the API key you provide; consider using a key with limited scope and rotate it if needed. (3) If you need extra assurance, review the bundled scripts/search_client.py locally before running; it contains the full request logic and endpoints. (4) Note the package originates from a public GitHub repo — if provenance matters, inspect the repository and the publisher identity before use.

Purpose & Capability: okName/description focus on Tavily search and the package implements Tavily plus several other AISA-backed search endpoints (web, scholar, smart, sonar, verity). Required binary (python3) and required env var (AISA_API_KEY) match the described purpose.
Instruction Scope: noteSKILL.md directs the agent to run the included Python client. The client only reads AISA_API_KEY from the environment and sends API requests to AISA endpoints. However, commands like 'extract' and the verity/explain flows will transmit user-supplied URLs and retrieved content to the remote AISA API, so sensitive URLs or content provided by the user would be sent off-host. SKILL.md warns against local credential access but does not (and reasonably cannot) prevent a user from supplying sensitive inputs that will be transmitted.
Install Mechanism: okNo install spec; this is instruction + bundled Python script. Nothing is downloaded at install time and no external archives or installers are fetched by the skill itself.
Credentials: okOnly one environment variable is required: AISA_API_KEY, which is appropriate for a client that calls AISA APIs. The code does not access other environment variables or configuration paths.
Persistence & Privilege: okalways is false and the skill does not request persistent or elevated platform privileges. It does not modify other skills or system-wide configuration.