Back to skill
Skillv3.2.0
ClawScan security
qingming-flight · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 24, 2026, 7:38 AM
- Verdict
- benign
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill is internally consistent for a command-line driven flight-booking helper, but it relies on installing and running a third‑party npm CLI at runtime (moderate risk) and has a minor branding mismatch to review.
- Guidance
- This skill is coherent for a CLI-based flight-booking assistant, but it will attempt to install and run a global npm package (@fly-ai/flyai-cli) if the CLI is missing. Installing global npm packages runs third-party code on your machine and can execute install scripts. Before installing: 1) verify the package on the npm registry (publisher, download counts, repository URL, README), 2) prefer installing in a controlled environment (container or VM) if you are unsure, 3) confirm whether the CLI requests any API keys or credentials (the SKILL.md doesn't list any), and 4) check the branding mismatch (Fliggy vs flyai) with the skill author or registry to ensure it's legitimate. If you are uncomfortable running npm -g installs or cannot verify the package, do not install this skill.
Review Dimensions
- Purpose & Capability
- noteThe skill's name/description (Qingming flight booking) align with the runtime instructions: it requires querying a 'flyai' CLI for real-time flight data. Minor inconsistency: the description says 'powered by Fliggy (Alibaba Group)' while the tooling is 'flyai' CLI — this could be a harmless copy/edit error or a branding mismatch to confirm.
- Instruction Scope
- okSKILL.md confines the agent to using only flyai CLI output and explicitly forbids using training data or fabricating results. It does not instruct reading unrelated files or environment variables. The 're-execute until a [Book](...) link is present' rule is strict and could produce repeated CLI runs, but is coherent with the stated goal.
- Install Mechanism
- noteThe skill is instruction-only (no install spec), but mandates installing a global npm package at runtime: `npm i -g @fly-ai/flyai-cli`. Installing an npm CLI executes third‑party code from the npm registry (traceable but not pre-reviewed) and writes files to disk — a moderate-risk action that is proportionate to a CLI-driven booking skill but worth verifying before running.
- Credentials
- okThe skill declares no required environment variables, credentials, or config paths. That is proportionate to its described behavior (calls a CLI). Note: if the flyai CLI itself later requires API keys, those would be outside this SKILL.md and should be reviewed separately.
- Persistence & Privilege
- okThe skill does not request always:true, does not modify other skills, and has no install-time persistence specified in SKILL.md. Normal autonomous invocation is allowed (platform default).