Back to skill
Skillv0.0.3
ClawScan security
jina-deepsearch · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 3, 2026, 6:49 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill is an instruction-only curl wrapper that uses a single AIHubMix API key to call Jina's DeepSearch model; its requirements and instructions are coherent with its stated purpose.
- Guidance
- This skill simply runs curl against aihubmix.com using the AIHUBMIX_API_KEY you provide. Before installing: 1) Verify you trust AIHubMix (aihubmix.com) and are comfortable giving it the queries you send — it will receive your request text and any data you include. 2) Confirm whether Jina's model is actually being proxied by AIHubMix (the skill's homepage points to jina.ai while the API host is aihubmix.com). 3) Treat AIHUBMIX_API_KEY as a secret: do not paste it into public places, prefer a scoped or limited API key if available, and rotate/revoke keys you no longer use. 4) Because the skill makes outbound network calls, consider data privacy, cost, and rate limits for your account. Overall the skill appears coherent and low-risk, but verify the provider and key management before use.
Review Dimensions
- Purpose & Capability
- okThe name/description say 'Jina DeepSearch via AIHubMix' and the SKILL.md issues a curl request to aihubmix.com with AIHUBMIX_API_KEY — the declared binary and env var match the stated purpose. Minor note: homepage is jina.ai while the actual API endpoint used is aihubmix.com; this is plausible (Jina model exposed via a third-party gateway) but worth verifying if you expect direct calls to jina.ai.
- Instruction Scope
- okRuntime instructions are narrowly scoped: they show a single curl POST to https://aihubmix.com/v1/chat/completions and only reference AIHUBMIX_API_KEY and Content-Type. The instructions do not read local files, other env vars, or send data elsewhere.
- Install Mechanism
- okThere is no install spec and no code files; this is instruction-only and relies on curl being present. That minimizes on-disk risk.
- Credentials
- okOnly one required env var (AIHUBMIX_API_KEY) is requested, which is appropriate for making authenticated calls to AIHubMix. The key name indicates a secret — that is expected and proportional to the skill's function.
- Persistence & Privilege
- okalways is false and the skill is user-invocable; it does not request persistent or elevated privileges. Note: disable-model-invocation is false (normal default), so the agent could call it autonomously if allowed by policy.