DeepSeek AI Search

ReviewAudited by ClawScan on May 10, 2026.

Overview

The skill’s search behavior is mostly coherent, but it embeds a real-looking shared API key and sends queries to an unfamiliar third-party API endpoint, so it should be reviewed before use.

Review before installing. Prefer configuring your own API key instead of the embedded public key, verify that https://ai.ch66.top is a provider you trust, and avoid sending private or secret information in search queries.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Medium

#ASI03: Identity and Privilege Abuse

What this means

Requests may be made under a shared account/key that can be abused, revoked, quota-limited, or associated with other users’ activity.

Why it was flagged

The skill publishes and recommends use of a shared API credential rather than requiring a user-owned, scoped credential.

Skill content

Public API Key (free to use): ... export AI_SEARCH_API_KEY="sk-5Agm...QPjCa"

Recommendation

Do not ship public API secrets in the skill. Use a user-provided key, rotate the exposed key, and clearly document the provider and required scopes.

Low

#ASI07: Insecure Inter-Agent Communication

What this means

Anything included in a search query, including sensitive context accidentally pasted into the prompt, may be transmitted to the configured API provider.

Why it was flagged

The user’s search query is sent to an external AI API endpoint; this is purpose-aligned but users should understand the data boundary.

Skill content

base_url = os.environ.get("AI_SEARCH_BASE_URL", "https://ai.ch66.top") ... requests.post(url, json=payload, headers=headers, timeout=90)

Recommendation

Verify the provider and its privacy terms before use, and avoid sending secrets or private data in search queries.

Low

#ASI04: Agentic Supply Chain Vulnerabilities

What this means

Users have less assurance that the reviewed artifact matches the claimed upstream project or future manual installation source.

Why it was flagged

The registry metadata does not identify a source or homepage, while the README separately references manual installation from a GitHub repository.

Skill content

Source: unknown; Homepage: none

Recommendation

Install only from a verified source and compare the installed files against the reviewed artifacts.