Back to skill
Skillv1.0.5
ClawScan security
ISBN Book Number Query - ISBN图书书号查询 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 3, 2026, 9:47 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill does what it says — it queries JisuAPI for ISBN lookups and keyword searches and only requires python3 and a JISU_API_KEY; there are no unexplained credentials, downloads, or persistence requests.
- Guidance
- This skill appears coherent and limited in scope. Before installing: (1) Keep your JISU_API_KEY private — the key is sent to api.jisuapi.com when queries are made. (2) Ensure your runtime has python3 and the 'requests' library (pip install requests) or the script will fail. (3) Check JisuAPI quota, cost, and privacy policies (requests consume your quota). (4) If you run in a sensitive environment, consider running the script in an isolated environment so the API key and outbound requests are controlled. If you need deeper assurance, review the small isbn.py source locally and test with a non-production API key.
Review Dimensions
- Purpose & Capability
- okName/description, SKILL.md, and the code all align: the script calls JisuAPI ISBN query/search endpoints and requires an AppKey (JISU_API_KEY). The requested env var is appropriate for this provider and matches the declared primary credential.
- Instruction Scope
- okRuntime instructions and the script focus solely on building a JSON request and calling JisuAPI endpoints. The SKILL.md does not instruct reading unrelated files, accessing unrelated environment variables, or sending data to third parties outside api.jisuapi.com.
- Install Mechanism
- noteThere is no install spec (instruction-only), which is low risk. One minor mismatch: the Python script imports the 'requests' library but SKILL.md/metadata do not mention installing that dependency; the environment must provide it or the user will need to pip install requests.
- Credentials
- okOnly a single API key (JISU_API_KEY) is required and justified by the skill's purpose. No unrelated secrets, config paths, or multiple credentials are requested.
- Persistence & Privilege
- okThe skill does not request 'always: true', does not modify other skills or system configs, and contains no code that persists beyond its own execution. Autonomous invocation is allowed but is the platform default and not combined with other red flags.