ClawHub
Back to skill
v0.2.0

Places Search

BenignClawScan verdict for this skill. Analyzed May 1, 2026, 5:46 AM.

Analysis

This appears to be a straightforward places/geocoding skill that uses a disclosed Camino API key and sends user-provided place searches to Camino’s API.

GuidanceThis skill looks coherent for geocoding and place search. Before installing, be aware that your search inputs and API key are sent to Camino's API, and prefer installing only the Places skill unless you have reviewed and want the broader companion skill suite.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
SKILL.md
Install all available skills ...
npx skills add https://github.com/barneyjm/camino-skills

The installation guidance includes a remote GitHub install and suggests installing the entire companion skill suite. This is user-directed and disclosed, but it can broaden the agent's installed capabilities beyond this single Places skill.

User impactFollowing the bulk install command may add other skills with different permissions or behaviors than the Places skill reviewed here.
RecommendationInstall only the specific skill you need, or review the companion skills separately before installing the whole suite.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityLowConfidenceHighStatusNote
scripts/places.sh
-H "X-API-Key: $CAMINO_API_KEY"

The script authenticates to Camino using the user's CAMINO_API_KEY. This is expected for the stated API-backed place lookup purpose, but the key represents account/quota authority and should be protected.

User impactAnyone with access to the configured API key could potentially use the user's Camino API quota or account access.
RecommendationUse a dedicated Camino API key with the minimum needed scope, store it only in trusted local settings, and rotate it if it is exposed.
Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication
SeverityLowConfidenceHighStatusNote
scripts/places.sh
-d "$INPUT" \
    "https://api.getcamino.ai/search" | jq .

The script sends the user-provided JSON search input to Camino's external API. This is disclosed and purpose-aligned, but place/address searches can reveal sensitive location interests.

User impactPrivate addresses, travel plans, or location searches entered into the skill will be transmitted to Camino's API.
RecommendationAvoid submitting sensitive home, workplace, or personal-location queries unless you are comfortable sharing them with the Camino service.