ClawHub

Ddg Web Search.Local.Bak 20260415 020609

v1.0.0

Search the web with DuckDuckGo instant answer API and return concise results. Use when the user asks to look something up online, fetch quick facts, or do li...

0· 38·0 current·0 all-time
by@graafdefolkert-byte
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description claim a DuckDuckGo instant-answer-backed web search. The bundled Python script performs exactly that (API call to api.duckduckgo.com and optional HTML fallback from duckduckgo.com). No unrelated credentials, binaries, or config paths are requested.
Instruction Scope
SKILL.md simply instructs the agent to run the bundled script with a query, which is consistent. The script does optionally spawn a local browser process when passed --open (tries brave-browser or xdg-open). That behavior is expected for a search helper but is a local side-effect the user should be aware of; otherwise the script only makes outbound HTTP requests to DuckDuckGo and does not read sensitive files or environment variables.
Install Mechanism
No install spec — instruction-only with a bundled Python script. Nothing is downloaded or written to disk at install time. This is the lowest-risk install pattern for skills that include code.
Credentials
The skill requires no environment variables, credentials, or config paths. All network calls are to DuckDuckGo endpoints; no secrets are requested or used.
Persistence & Privilege
always is false and the skill does not attempt to modify other skills or system-wide agent settings. It does not request persistent privileges or store tokens.
Assessment
This skill appears to do exactly what it says: query DuckDuckGo and return concise results. Notes before installing: (1) the included Python script will make outbound HTTP requests to DuckDuckGo (api.duckduckgo.com and duckduckgo.com/html) — ensure outbound network access is acceptable; (2) passing --open will attempt to launch a local browser (brave-browser or xdg-open), which is a local side-effect; (3) although no secrets are requested, you should review the included script (already provided) before enabling the skill and run it in a sandbox if you have strict security policies. Overall the contents are coherent and proportionate to the stated purpose.

Like a lobster shell, security has layers — review code before you run it.

latestvk97634vwbbag4wfs9ab03kpf7s84wkd0

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments