Skillv1.0.0

ClawScan security

Tavily Quota Router · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignMar 24, 2026, 9:13 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's files, instructions, and behavior are consistent with a multi-key Tavily search router: it reads keys from config/keys.json, queries api.tavily.com for usage and search, and maintains local cooldown/state; nothing in the bundle indicates unrelated or hidden behavior.
Guidance: This skill appears to do what it claims, but review these practical points before installing: - Keys are stored in config/keys.json in plaintext under the skill directory. Only put keys you control there and ensure file permissions are appropriate. - The script will send whatever keys you configure to https://api.tavily.com for usage checks and searches. Do not add third-party or shared keys you don't want transmitted. - Run python3 scripts/tavily_multi_key.py test-keys or status locally first to verify behavior and that the endpoint is expected. If you run the skill on a hosted agent, remember that the host will have access to these keys and network traffic goes to Tavily. - The skill writes local state (state/quota.json) containing usage and cooldown info; that data may include usage metrics but keys are masked in outputs. - If you need tighter security, consider storing keys in a secured vault rather than in the skills config file or restricting access to the skill directory. If you want, I can walk through the code line-by-line or highlight exactly where and how keys are sent and persisted.

Purpose & Capability: okName/description match the implementation: the script reads keys from config/keys.json, calls Tavily's /usage and /search endpoints, and routes across keys. No unrelated credentials, binaries, or external services are requested.
Instruction Scope: okSKILL.md instructs the agent to use the bundled script and to consult config/keys.json; the script's runtime actions (read local config/state, call api.tavily.com, write local state) match the documented scope. It does not ask to read other system files or transmit data to unexpected endpoints.
Install Mechanism: okNo install spec is provided; this is instruction + script only. No downloads or package installs occur, so there is no installer risk in the skill bundle itself.
Credentials: okThe skill requires no environment variables or external credentials declared by the registry. It expects API keys in config/keys.json, which is coherent for a multi-key router. No unrelated secrets are requested.
Persistence & Privilege: okalways is false and the skill does not request elevated or system-wide privileges. It writes only its own state/config files under the skill directory (state/quota.json, config/keys.json), which is expected and proportionate.