Weather Api
PassAudited by ClawScan on May 1, 2026.
Overview
The skill appears aligned with construction weather analysis, with expected network and file-use notes but no evidence of malicious behavior.
Before installing, confirm you are comfortable with the agent using network access for weather lookups, sharing site coordinates with the weather provider, and reading or exporting only the project files you intentionally provide.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may read project files you point it to, create exports, and contact external weather services.
The skill declares broad filesystem and network permissions. This fits the weather API and file import/export purpose, but users should notice that local file access and outbound requests are enabled.
"permissions": [
"filesystem",
"network"
]Only provide intended project files and review export paths before allowing the agent to write files.
Construction site coordinates may be sent to Open-Meteo to retrieve weather data.
The documented implementation uses an external weather provider; the forecast and archive calls include latitude and longitude parameters for project locations.
OPEN_METEO_BASE = "https://api.open-meteo.com/v1"
Avoid submitting sensitive exact locations unless that disclosure is acceptable; use approximate coordinates when practical.
If the code is run locally, missing or unpinned Python packages may need to be installed separately.
The documented Python implementation depends on third-party packages, while the provided requirements only declare python3 and there is no install spec. No automatic package installation is evidenced.
import requests import pandas as pd
Install dependencies only from trusted sources and prefer pinned versions if operationalizing the example code.