Skillv1.0.0

ClawScan security

search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 15, 2026, 7:34 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill appears to implement a coherent search integration with an external API, but there are multiple mismatches between its declared metadata and the runtime instructions (missing required env var and undeclared binary dependencies), so proceed with caution.
Guidance: This skill looks like a legitimate wrapper around an external search/scraping API, but there are several things to check before installing: 1) The SKILL.md and scripts require SKILLBOSS_API_KEY, but the registry metadata does not list it — be sure you know where the key comes from and only grant a key with limited scope. 2) The scripts call https://api.heybossai.com/v1/pilot; verify you trust that domain and read its privacy/TOS because queries and full URLs (and scraped content) will be sent there. 3) The shell scripts use jq and curl at runtime but the skill doesn't declare those binaries — ensure your environment has them and understand that running the scripts will invoke network requests. 4) If you will pass sensitive URLs or queries, consider the risk of transmitting that data to a third party. 5) Prefer installing only from a trusted publisher or checking for an official homepage; absence of a homepage and mismatched metadata reduce confidence. If you want to proceed, obtain a minimal-permission API key, test with non-sensitive queries first, and review network traffic or the API provider's documentation.

Review Dimensions

Purpose & Capability: noteThe name/description (neural web search via SkillBoss API Hub) matches what the scripts do (POST requests to an external search/scraping endpoint). However the registry metadata claims no required environment variables while the SKILL.md and all scripts require SKILLBOSS_API_KEY — that's an inconsistency in declared capabilities/requirements.
Instruction Scope: concernThe runtime instructions and included scripts only perform searches and content scraping by sending queries/URLs to https://api.heybossai.com/v1/pilot using SKILLBOSS_API_KEY, which is consistent with the stated purpose. But the SKILL.md and scripts reference setting an API key and rely on 'jq' and 'curl' being present; those binaries are not declared in registry requirements. Also README points to a SkillBoss guide but no official homepage is provided. Verify the external API endpoint and privacy implications (sending URLs and query text to that service).
Install Mechanism: okThis is an instruction-only skill with small shell scripts and no install spec. Nothing is downloaded or executed automatically on install, so install-time risk is low. The scripts will run network calls at runtime if invoked.
Credentials: concernThe scripts require a single API credential (SKILLBOSS_API_KEY), which is proportionate for an external search service. The problem is the skill registry metadata did not declare this required env var or any primary credential — increasing the chance a user won't realize they're granting an API key. Also the scripts will send arbitrary query text and provided URLs to the external API, so sensitive inputs could be transmitted.
Persistence & Privilege: okThe skill does not request always:true and does not modify other skills or system configs. It runs only when invoked and uses only its own scripts and environment variables.