AIsa Multi Source Search

PassAudited by ClawScan on May 1, 2026.

Overview

This appears to be a coherent external search client, but it uses your AIsa API key and sends search queries or URLs to an external API.

Install only if you trust AIsa/OpenClaw with your search queries, URLs, and API-key-authenticated requests. Treat returned web content and confidence scores as helpful but not authoritative, and avoid sending private information unless you intend to share it with the external search provider.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low

#ASI03: Identity and Privilege Abuse

What this means

Search requests may use the user's AIsa account, quota, billing, or access rights.

Why it was flagged

The client reads the user's AISA_API_KEY and sends it as a bearer token to authenticate AIsa API calls.

Skill content

self.api_key = api_key or os.environ.get("AISA_API_KEY") ... "Authorization": f"Bearer {self.api_key}"

Recommendation

Use a dedicated, revocable API key with the minimum needed access, and avoid putting secrets or private information into search queries.

Low

#ASI02: Tool Misuse and Exploitation

What this means

An agent using the skill could send chosen URLs to the provider for crawling or extraction.

Why it was flagged

The skill can ask the external service to crawl or extract content from user-supplied URLs, which is aligned with search but expands the impact beyond a single query.

Skill content

def tavily_crawl(self, url: str, max_depth: int = 2):
        return self._request("POST", "/tavily/crawl", data={"url": url, "max_depth": max_depth})

Recommendation

Use this only on intended public URLs and avoid private, sensitive, or internal links unless you are comfortable sharing them with the provider.

Info

#ASI04: Agentic Supply Chain Vulnerabilities

What this means

Users have less information for independently verifying who maintains the skill and where updates come from.

Why it was flagged

The registry does not identify a source repository or package origin, which limits provenance verification even though the visible code is small and purpose-aligned.

Skill content

Source: unknown

Recommendation

Confirm the skill publisher and API provider are trusted before installing or supplying an API key.