圆周率查询 - 即刻数据
PassAudited by ClawScan on May 9, 2026.
Overview
This is a straightforward pi-query skill that calls the documented Jike API with an AppKey, with only minor review notes about credential handling and an overly broad description.
This skill appears safe for its stated pi-query purpose. Before installing, make sure you are comfortable providing a Jike API AppKey, keep the key out of shared logs or command histories, and use the skill only for pi digit/location queries rather than general date or market data.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may try this skill for non-pi questions and return irrelevant or failed results.
The skill is implemented only for pi digit/location queries, so mentioning date or market queries is broader than the actual capability and could lead to irrelevant invocation.
适用场景:用户询问相关数据查询、日期查询或行情查询时使用。
Use this skill only for pi digit/location questions; the publisher should narrow the description to match the implemented functionality.
Your Jike API key is used for outbound API requests; if an untrusted API base URL is configured, the key could be sent somewhere other than the default provider.
The script sends the configured AppKey as a query parameter to the Jike API by default, and also allows the base URL to be overridden through an environment variable.
API_BASE_URL = os.environ.get("JIKE_API_BASE_URL", "https://api.jikeapi.cn").rstrip("/") ... urllib.parse.urlencode({**params, 'appkey': appkey})Store the AppKey in the intended environment variable, avoid passing secrets on the command line when possible, and do not set JIKE_API_BASE_URL unless you trust the endpoint.