Skillv1.0.0

ClawScan security

Doubao Chat · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 8, 2026, 3:33 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill is a simple Node-based wrapper for a third-party Doubao API and largely matches its chat purpose, but metadata and documentation disagree about required credentials and capabilities (e.g., a web-search claim and an unneeded curl requirement), so there are incoherences you should verify before installing.
Guidance: This skill appears to be a small Node script that sends prompts to a third‑party API and requires you to provide DOUBAO_SESSIONID (sent as a Bearer token). Before installing: (1) Confirm the DOUBAO_SESSIONID is safe to use here — it may grant access to your Doubao account; prefer a limited/throwaway token if possible. (2) Verify the API host (doubao-free-api.vercel.app) is legitimate and intended by the publisher — the skill's homepage is doubao.com but the API is hosted on Vercel, which may be a proxy. (3) Ask the publisher to correct registry metadata to declare the required env var and to remove the unnecessary 'curl' requirement, and to clarify whether web-search is actually supported. If you cannot verify these points, avoid supplying production or sensitive credentials to this skill.

Review Dimensions

Purpose & Capability: noteName/description claim a Doubao chat with web-search support; the code implements a basic chat client calling https://doubao-free-api.vercel.app/v1/chat/completions which is consistent with a chat skill, but the advertised 'supports联网搜索' (web search) is not implemented in the script. Also SKILL.md metadata lists required binaries ['curl','node'] while the included script only needs node.
Instruction Scope: noteSKILL.md instructs setting DOUBAO_SESSIONID and running node scripts/chat.js, which matches the script's behavior. The instructions do not read other files or exfiltrate local data. However the runtime instructions mention an API endpoint on a Vercel domain rather than the skill homepage (doubao.com), which is an unexpected divergence the user should confirm.
Install Mechanism: okInstruction-only skill with a small included Node script and no install spec — nothing is downloaded or written to disk by an installer. This is low install risk.
Credentials: concernThe script requires a DOUBAO_SESSIONID environment variable (used as a Bearer token) but the registry metadata claimed no required env vars; this mismatch is a notable incoherence. No other credentials are requested, which is proportionate, but you should confirm where the session token is valid and whether it grants account-level access.
Persistence & Privilege: okThe skill does not request always: true and does not persist or modify other skills or system config. It runs only when invoked.