Clarity Analyze
PassAudited by ClawScan on May 1, 2026.
Overview
This skill appears purpose-aligned: it sends user-provided research questions to Clarity Protocol for AI analysis, but users should notice that it uses an API key and sends question/context data to an external service.
This skill looks safe to use for its stated purpose if you are comfortable sending the research question and optional context to Clarity Protocol. Use a scoped API key where possible, and do not include sensitive or unpublished information unless the service's privacy and retention practices are acceptable to you.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Using the skill gives Clarity API requests the authority associated with the provided write key.
The skill reads a Clarity write API key from the environment and sends it as an API credential. This is purpose-aligned and disclosed in SKILL.md, but the registry metadata says no primary credential or required env vars are declared.
api_key = os.environ.get("CLARITY_WRITE_API_KEY") ... headers["X-API-Key"] = api_keyUse a dedicated, least-privilege Clarity API key if available, set it only when needed, and rotate it if it may have been exposed.
Research questions and any additional context may be processed outside the local machine by Clarity Protocol and its server-side AI provider.
The artifact discloses that questions are sent to Clarity Protocol and processed by a server-side AI provider. This is consistent with the skill purpose, but it is still an external data flow users should understand.
Requires internet access to clarityprotocol.io. Requires CLARITY_WRITE_API_KEY env var. Analysis uses Claude AI on the server side.
Avoid submitting confidential, regulated, or unpublished research details unless Clarity's data handling terms meet your requirements.