ClawHub

Baidu Search.Bak

v1.0.0

Search the web using Baidu AI Search Engine (BDSE). Use for live information, documentation, or research topics.

0· 66·1 current·1 all-time
by@aysun168·fork of @ide-rea/baidu-search (1.1.3)
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name, description, and code implement a Baidu AI web search. Requested items (python3 and BAIDU_API_KEY) match the stated purpose. Minor note: the included script uses the Python 'requests' library but the skill metadata does not declare that dependency.
Instruction Scope
Runtime instructions only run the included Python script with a JSON argument and tell the user how to configure BAIDU_API_KEY. The documentation suggests placing the API key in ~/.openclaw/openclaw.json (a local config)—this is reasonable for setup but is a scope note because it instructs modifying a user config file and storing the key in plaintext.
Install Mechanism
No install spec (instruction-only) — lowest risk. Note: the script requires the 'requests' Python package but no installation steps are provided; users may need to pip install requests before running.
Credentials
Only a single credential (BAIDU_API_KEY) is required and it is the primary credential for contacting Baidu's API. This is proportionate. Reminder: storing the key in plaintext inside ~/.openclaw/openclaw.json is convenient but reduces secrecy.
Persistence & Privilege
The skill does not request persistent or elevated platform privileges (always:false). It does not try to modify other skills or system-wide settings beyond recommending editing the OpenClaw config for the API key.
Assessment
This skill appears to do what it says: call Baidu's AI search API using your BAIDU_API_KEY. Before installing: (1) verify you have python3 and install the requests package (pip install requests) so the script can run; (2) consider whether you want the API key stored in ~/.openclaw/openclaw.json (plaintext) or prefer to set BAIDU_API_KEY in a secure environment/secret manager; (3) confirm the HTTP endpoint (https://qianfan.baidubce.com) matches the Baidu service you expect; (4) test the skill in an isolated environment if you are unsure; (5) note a small metadata mismatch in packaged _meta.json vs. registry metadata (ownerId/slug/version differences) — this looks like a packaging inconsistency rather than malicious behavior, but you may want to confirm the publisher/source if provenance is important.

Like a lobster shell, security has layers — review code before you run it.

latestvk97f4p1by2pcwwz04mv1zsyf4583qxkn

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔍︎ Clawdis
Binspython3
EnvBAIDU_API_KEY
Primary envBAIDU_API_KEY

Comments