Flight
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: flight Version: 1.0.1 The skill bundle consists entirely of markdown documentation outlining best practices, data sources, and operational rules for an AI agent focused on flight search, booking, and management. There is no executable code, no instructions for prompt injection with malicious intent, and no evidence of data exfiltration, unauthorized execution, or persistence mechanisms. While `apis.md` mentions capabilities like web scraping (e.g., Google Flights) and handling user credentials (e.g., AwardWallet), these are presented as facts about available APIs and data sources, not as instructions for malicious activity. All instructions in `SKILL.md` and other markdown files are aligned with the stated purpose of the skill.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent following this instruction could make a flight purchase before the user has approved the fare, payment method, refund rules, or itinerary.
This explicitly encourages booking before user review. Flight purchases can charge money, create contractual commitments, and may not be safely reversible.
Error fares: book immediately, ask questions later (refundable if mistake)
Require explicit user confirmation before any booking, rebooking, cancellation, payment, or fare-rule commitment, including error fares.
Local files may retain travel plans, loyalty details, and booking references beyond the current session.
The skill stores persistent travel preferences and booking reference data locally. PNRs and travel history can be sensitive and may enable access to reservations.
Preferences persist in `~/flight/memory.md`. Create on first use. ... Store flight data in ~/flights/: ... bookings — active reservations with PNRs
Tell users exactly what will be saved, ask before storing PNRs or loyalty details, and provide clear cleanup or retention instructions.
Using some loyalty-tracking features could require account access that should be handled carefully.
The skill references an optional loyalty integration that may require user credentials, even though no primary credential is declared in the registry metadata.
AwardWallet — Track 700+ programs. Requires user credentials.
Only provide credentials through trusted, scoped authentication flows, and avoid sharing raw airline or loyalty passwords with the agent.