Back to skill
Skillv0.2.0
ClawScan security
DuckDuckGo(API) · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 25, 2026, 9:38 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code and runtime instructions match its stated purpose (DuckDuckGo searching via the ddgs package); nothing in the files indicates hidden functionality, but the README recommends a remote installer and proxy usage that you should consider before running.
- Guidance
- This skill appears to do what it says: run DuckDuckGo searches via the ddgs Python package. Before installing or running: (1) avoid running unfamiliar curl|sh installers — prefer pip install ddgs or inspect the installer at https://astral.sh if you want 'uv'; (2) be cautious if you supply a proxy URL containing credentials (HTTP_PROXY or DDGS_PROXY), since those are sensitive and could be logged or transmitted to the proxy; (3) if you need stronger isolation, run the script in a sandbox or ephemeral environment; and (4) review the ddgs package and network egress policies if you have strict security requirements.
Review Dimensions
- Purpose & Capability
- okName/description (DuckDuckGo web search) align with the included Python script and SKILL.md. The code uses the ddgs package to perform web and news searches and exposes the same CLI options documented in SKILL.md. No unrelated credentials, binaries, or config paths are requested.
- Instruction Scope
- noteSKILL.md instructs the agent to run the included script (uv run scripts/ddgs_search.py) and shows bash/python invocation examples; the instructions stay within the search task. The FAQ recommends installing 'uv' via a remote curl|sh installer (astral.sh), which introduces a network-download step outside the skill's code — this is an operational risk to be aware of but not evidence of malicious behavior in the skill itself.
- Install Mechanism
- noteThere is no formal install spec in metadata (instruction-only + provided script). Dependencies are standard (ddgs, Python). SKILL.md recommends 'uv' and shows how to install it, including a curl|sh command that fetches code from https://astral.sh; downloading and executing remote install scripts is higher risk than using a package manager or pip, so prefer pip or verify the installer before running.
- Credentials
- okThe skill does not require any environment variables or secrets in its metadata. It optionally reads HTTP_PROXY/http_proxy/DDGS_PROXY to support proxies — reasonable given proxy support, but proxy URLs may contain credentials (user:pass@host) so those values should be treated as sensitive.
- Persistence & Privilege
- okSkill does not request persistent/always-on presence, does not modify other skills or global agent config, and allows user invocation. It does not claim or require elevated privileges.