ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

元典法条与案例检索

v0.3.1

元典法条与案例检索。本技能应在需要查询中国法律法规条文、检索相关案例、为法律分析提供数据支撑时使用。

0· 69·0 current·0 all-time
byxierluo@cat-xierluo
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
Capability signals
CryptoCan make purchases
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Skill name/description match the included CLI script and API spec: it queries a '元典' law/case API. Requiring an API key is expected for this purpose, but the registry metadata lists no required env vars/primary credential while both SKILL.md and scripts/yd_search.py require YD_API_KEY. The missing declaration is an inconsistency.
!
Instruction Scope
SKILL.md and the script explicitly instruct reading scripts/.env or the YD_API_KEY environment variable and then call the external API. That is within scope, but the code builds requests as HTTP (http://aiapi.ailaw.cn:8319) and appends the API key in the URL query string (?api_key=...), which exposes the key to network observers and to any logs that capture full URLs. This insecure transport/placement of secrets is a security concern.
Install Mechanism
No install spec; the skill is instruction + a small Python CLI script. No downloads or package installs are performed by the skill itself.
!
Credentials
The script requires a YD_API_KEY (via environment variable or scripts/.env) but the skill manifest/registry metadata does not declare this required credential or primaryEnv. That omission reduces transparency. The API key is the sole secret requested, which is proportionate to the stated purpose, but its handling (in URL + over plain HTTP) amplifies risk.
Persistence & Privilege
Skill flags show no always:true and default autonomous invocation is allowed. The skill does not request to persist or modify other skills or system-wide config. No elevated persistence is requested.
What to consider before installing
This skill appears to do what it says (query a Chinese law/case API), but before installing: (1) note the developer forgot to declare the required YD_API_KEY in the skill metadata — the script will fail without that key; (2) the script sends your API key in the URL over plain HTTP (http://aiapi.ailaw.cn:8319?api_key=...), which can be intercepted or logged — prefer HTTPS and POST bodies or Authorization headers; (3) verify you trust the API provider (aiapi.ailaw.cn) and the skill author, and consider creating a restricted API key if possible; (4) ask the author/maintainer to update the registry manifest to declare YD_API_KEY as the primary credential and to use HTTPS and send keys in headers or request bodies to avoid leakage. If you cannot confirm the endpoint or cannot accept the insecure transport of secrets, do not install or use this skill with sensitive keys.

Like a lobster shell, security has layers — review code before you run it.

latestvk976rwzbkcb2c20k2hzm6dz1t184fybp

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments