ClawHub

Tavily Skill

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Tavily web-search skill, but searches and the Tavily API key are sent to Tavily’s service.

Install only if you are comfortable sending search queries to Tavily. Do not use it for secrets, private internal URLs, regulated data, or confidential research terms, and keep TAVILY_API_KEY in a scoped environment variable rather than hardcoding it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill instructs sending user-provided search queries and optionally raw page content to Tavily, but it does not clearly warn that this data leaves the local environment and is processed by a third party. In practice, users may include sensitive prompts, internal terms, or confidential URLs in research queries, causing unintended disclosure.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The script sends the user-supplied query and an API credential to a third-party service, but it does not provide any explicit notice or consent mechanism beyond generic usage help. In an agent/skill context, this can cause unintentional disclosure of sensitive prompts, internal data, or user-provided secrets to an external provider.

External Transmission

Medium
Category
Data Exfiltration
Content
fi

# Make API request
curl -s -X POST "https://api.tavily.com/search" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer $TAVILY_API_KEY" \
  -d "{
Confidence
87% confidence
Finding
curl -s -X POST "https://api.tavily.com/search" \ -H "Content-Type: application/json" \ -H "Authorization: Bearer $TAVILY_API_KEY" \ -d

External Transmission

Medium
Category
Data Exfiltration
Content
fi

# Make API request
curl -s -X POST "https://api.tavily.com/search" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer $TAVILY_API_KEY" \
  -d "{
Confidence
87% confidence
Finding
https://api.tavily.com/

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal