Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Kaiwu Search
v1.0.0Search the web in Chinese (Traditional + Simplified) and English using the Kaiwu API. Use when the agent needs to search the web for Chinese content, find in...
⭐ 0· 21·0 current·0 all-time
byJu Chun Ko@daaab
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's stated purpose (search via Kaiwu API) matches the instructions. However, the manifest declares no required environment variables or primary credential while the SKILL.md explicitly requires a KAIWU_API_KEY and describes an auto-registration flow — the manifest should have declared that credential. This is an incoherence between what the skill says it needs and what it actually instructs the agent to use.
Instruction Scope
Instructions are mostly scoped to calling kaiwu.dev endpoints (search and credits). But they also instruct the agent to check for an agent wallet and, if present, auto-register via POST to https://kaiwu.dev/api/auth/agent-register using a SIWE signature. That implies accessing a wallet signing capability and initiating registration on the user's behalf — an action beyond a simple search helper and one that requires explicit user consent and clear declaration.
Install Mechanism
No install spec and no code files — instruction-only. This is the lowest install risk; nothing is written to disk by the skill bundle itself.
Credentials
The SKILL.md requires KAIWU_API_KEY and suggests storing it in an env var, and also references agent wallets/SIWE for auto-registration. The registry metadata did not declare any required env vars or a primary credential. Requesting an API key and performing wallet-based registration are reasonable for an API-based search tool, but the absence of those requirements in the manifest is a red flag and the wallet auto-register flow increases sensitivity.
Persistence & Privilege
The skill is user-invocable and not always-enabled; it does not request persistent system-wide privileges in the bundle. Autonomous invocation is allowed by platform default (disable-model-invocation is false) but is not combined with always:true or broad undeclared credential access.
What to consider before installing
This skill appears to do what it says (web search optimized for Chinese), but the runtime instructions require a KAIWU_API_KEY and describe auto-registration using a wallet (SIWE) — neither is declared in the registry metadata. Before installing or enabling this skill: 1) Confirm you trust kaiwu.dev and can revoke the API key if needed; 2) Require the skill manifest to declare KAIWU_API_KEY (primaryEnv) so the platform can surface the credential request clearly; 3) If your agent has a wallet, verify any auto-registration step and signing prompts — do not allow silent signing or registration without explicit user confirmation; 4) Be aware 'uncensored' search can surface politically sensitive content; 5) Note the skill source/homepage is missing and the owner is unknown — prefer skills with verifiable authorship. If you need lower risk, ask the skill author to remove auto-registration or make wallet use an explicit, optional flow documented in the manifest.Like a lobster shell, security has layers — review code before you run it.
aivk97az2986s415sbqgjkvb2652184617capivk97az2986s415sbqgjkvb2652184617cchinesevk97az2986s415sbqgjkvb2652184617clatestvk97az2986s415sbqgjkvb2652184617cmcpvk97az2986s415sbqgjkvb2652184617csearchvk97az2986s415sbqgjkvb2652184617ctaiwanvk97az2986s415sbqgjkvb2652184617ctraditional-chinesevk97az2986s415sbqgjkvb2652184617cuncensoredvk97az2986s415sbqgjkvb2652184617c
License
MIT-0
Free to use, modify, and redistribute. No attribution required.