Back to skill
Skillv1.0.0
ClawScan security
新华字典 - 即刻数据 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 29, 2026, 6:51 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and required credential align with its stated purpose (querying a Chinese character API); there are no surprising network endpoints, installs, or broad credential requests.
- Guidance
- This skill appears to do exactly what it says: it sends queries (including your AppKey) to api.jikeapi.cn and returns character data. Before installing, verify the provenance of your AppKey (only give an AppKey you trust), avoid storing unrelated secrets in the skill's .env file, and confirm you are comfortable the key's permissions and billing risk with the jikeapi.cn service. The only minor inconsistency is that the script accepts JIKE_APPKEY in addition to the declared JIKE_CHARACTER_QUERY_KEY — this is harmless but be sure you don't reuse a shared JIKE_APPKEY that grants access to other services.
Review Dimensions
- Purpose & Capability
- okName/description promise (新华字典 via 即刻数据) matches the code and SKILL.md: the script calls jikeapi.cn endpoints for pinyin/radicals/detail. Required binary (python3) and the single required credential (an AppKey) are appropriate for this purpose.
- Instruction Scope
- noteRuntime instructions and script behavior stay within scope: they read an AppKey (from --key, the JIKE_CHARACTER_QUERY_KEY or JIKE_APPKEY env var, or a .env file in the script directory) and call only api.jikeapi.cn endpoints. Small mismatch: required.env declares JIKE_CHARACTER_QUERY_KEY but the script also accepts JIKE_APPKEY (and SKILL.md documents that), which is benign but worth noting.
- Install Mechanism
- okNo install spec; this is an instruction-only skill with a Python script. Nothing is downloaded or written during installation.
- Credentials
- noteThe skill requests a single API key (primaryEnv: JIKE_CHARACTER_QUERY_KEY), which is proportional. Note the script also accepts JIKE_APPKEY and reads a local .env file in the script directory for the same keys — this is reasonable but you should avoid placing unrelated secrets in that .env file or reusing a global JIKE_APPKEY if it grants broader access.
- Persistence & Privilege
- okalways is false and the skill does not modify other skills or system configuration. Autonomous invocation is allowed (platform default) but the skill's scope and required credential are limited.