Ok Computer Swarm
PassAudited by ClawScan on May 1, 2026.
Overview
This is a straightforward user-invoked web-search skill; users should mainly know that their search queries are sent to DuckDuckGo and that it installs a Python dependency.
This skill appears safe for ordinary web research. Before installing, be aware that your query text is sent to DuckDuckGo, and use normal Python dependency hygiene if installing `requests` from PyPI.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If you search for sensitive names, projects, or private questions, those terms may be visible to DuckDuckGo or network intermediaries.
The script sends each user-supplied query to DuckDuckGo as request parameters. This is expected for a web-search skill, but the query text is shared with an external provider.
DUCKDUCKGO_API = "https://api.duckduckgo.com/" ... response = requests.get(DUCKDUCKGO_API, params=params, timeout=10)
Avoid putting secrets, private customer data, or confidential internal project details into search queries unless you are comfortable sharing them with the search provider.
Installing later could pull a newer dependency version than the author tested.
The dependency is specified with a lower-bound version rather than an exact pinned version or hash. The dependency is purpose-aligned for HTTP requests, but future installs may resolve to different package versions.
requests>=2.31.0
Install from a trusted Python package source, and consider pinning or hashing dependencies if you need reproducible or higher-assurance installs.