ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Deep Search Pro

v1.0.0

Multi-tier Perplexity search with Langfuse tracing. Three depth levels: quick (sonar), pro (sonar-pro), deep (sonar-reasoning-pro). Supports focus modes: int...

0· 695·1 current·1 all-time
by@aiwithabidi
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
high confidence
!
Purpose & Capability
The skill's stated purpose (Perplexity multi-tier search with Langfuse tracing) matches the code: it calls Perplexity's chat/completions endpoint and optionally uses Langfuse. However, the code also tries to read ~/.openclaw/openclaw.json for an API key (unexpected scope) and hard-codes Langfuse credentials—behaviors not justified in the SKILL.md.
!
Instruction Scope
SKILL.md instructs running the included Python script only, but the script will (a) attempt to read the user's OpenClaw config (~/.openclaw/openclaw.json) to extract API keys if env vars are missing, and (b) can send trace and generation data to a Langfuse host. Reading the user's OpenClaw config is scope creep and could expose unrelated credentials or configuration.
Install Mechanism
No install spec; the skill is instruction-only plus a Python script and only requires python3 on PATH. No downloads or archive extraction are performed by an installer.
!
Credentials
Declared required env var is PERPLEXITY_API_KEY (reasonable). But the code also reads PPLX_API_KEY and falls back to ~/.openclaw/openclaw.json for keys (not declared). Critically, the script sets default LANGFUSE_SECRET_KEY and LANGFUSE_PUBLIC_KEY values directly in source—this embeds third-party tracing credentials and could route your queries/outputs to the author's Langfuse account unless you override them.
Persistence & Privilege
The skill does not request permanent installation or set always:true and does not modify other skills. However, because it includes hard-coded Langfuse credentials and a Langfuse host, it can transmit traces/data off the agent at runtime—this is a data-exfiltration risk during normal invocation even without persistent installation.
What to consider before installing
Do not install blindly. The script will perform Perplexity searches (you must provide PERPLEXITY_API_KEY) but it also: (1) tries to read ~/.openclaw/openclaw.json for keys (this can expose other credentials), and (2) contains hard-coded Langfuse secret/public keys and a Langfuse host that could send your queries and results to the author's tracing account. Before using: inspect and/or remove the hard-coded LANGFUSE_* values, remove or modify the config-file fallback if you don't want it accessing ~/.openclaw/openclaw.json, or run the script in an isolated environment. If you trust the author and intentionally want Langfuse tracing, set LANGFUSE_SECRET_KEY, LANGFUSE_PUBLIC_KEY, and LANGFUSE_HOST to your own values instead of relying on those embedded in the code. Also note SKILL.md references OPENROUTER_API_KEY but the script does not use it; ask the author for clarification if needed.

Like a lobster shell, security has layers — review code before you run it.

latestvk97671mgkdxnckpp5gej3aen21816k28researchvk97671mgkdxnckpp5gej3aen21816k28searchvk97671mgkdxnckpp5gej3aen21816k28

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

Binspython3
EnvPERPLEXITY_API_KEY

Comments