Back to skill
Skillv1.0.0
ClawScan security
AIsa Multi Source Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignFeb 11, 2026, 9:00 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, runtime instructions, and required credential (AISA_API_KEY) align with its stated purpose (multi-source search) and do not request unrelated system access or unexpected secrets.
- Guidance
- This skill appears internally consistent: it needs a single AISA_API_KEY and talks to api.aisa.one to perform multi-source searches. Before installing, confirm you trust the AIsa/api.aisa.one service and the AISA_API_KEY provider (review their privacy/data-retention terms), store the API key securely (not in shared shells), and monitor usage/rate limits. If you require additional assurance, verify the upstream project's ownership (homepage and repository) and the network endpoints (api.aisa.one) to ensure they match your trust boundaries.
Review Dimensions
- Purpose & Capability
- okName/description, SKILL.md examples, and the included Python client consistently target multi-source search (web, scholar, Tavily) and use a single external API (api.aisa.one). Required binaries (curl, python3) and the AISA_API_KEY credential are proportionate to this purpose.
- Instruction Scope
- okSKILL.md instructs the agent to call the AIsa API endpoints (curl examples) and does not direct the agent to read unrelated files, environment variables, or local system state. The included script likewise only reads AISA_API_KEY and makes HTTP calls to the declared API.
- Install Mechanism
- okThere is no install spec — the skill is instruction-only plus a client script. No third-party downloads, installers, or archive extraction are specified, so nothing unexpected is written to disk by an installer step.
- Credentials
- okOnly one environment variable (AISA_API_KEY) is required and is directly used as the API bearer token. No other unrelated credentials, secrets, or config paths are requested.
- Persistence & Privilege
- okThe skill is not forced-always (always:false) and does not request persistent system-level privileges or attempt to modify other skills' configurations. Autonomous invocation is allowed by default but is not combined with excessive access.