Domain Details
Security checks across static analysis, malware telemetry, and agentic risk
Overview
The skill’s disclosed curl-based domain lookups match its purpose; users should just know queries go to DomainDetails and the optional npx CLI is outside the instruction-only artifact.
This appears safe for ordinary domain lookups. Before installing or using it, be aware that domain queries go to the DomainDetails service, and use the optional npx command only if you have verified the npm package or are comfortable with that supply-chain path.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Domain names you ask the skill to check may be visible to the DomainDetails service.
The lookup is performed by sending the queried domain to an external DomainDetails endpoint. This is disclosed and central to the skill, but it is still an external provider data flow.
curl -s "https://mcp.domaindetails.com/lookup/example.com" | jq
Use it for domains you are comfortable querying through that provider, and avoid confidential internal hostnames if that sharing is not acceptable.
If you choose the optional CLI, you may execute package code whose provenance is not established by this instruction-only skill.
The optional CLI path would invoke an npm package that is not included, pinned, or otherwise evidenced in the supplied artifacts.
npx domaindetails example.com
Prefer the direct curl commands, or verify the npm package publisher and pin a trusted version before using npx.