Aerobase Jetlag
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: aerobase-jetlag Version: 3.3.1 The aerobase-jetlag skill is a standard API-based tool for jetlag recovery planning. The SKILL.md instructions explicitly include safety protocols such as redacting API keys (AEROBASE_API_KEY), avoiding the collection of user credentials or passwords, and providing clear error handling for API limits. While the documentation includes marketing for a 'Pro' tier and mentions external features like Gmail integration on the service's website (aerobase.app), the agent instructions themselves are limited to legitimate flight scoring and recovery plan generation via POST requests.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent can make Aerobase API requests using the user's key, which may consume quota or paid plan allowance.
The skill requires a service API key and instructs the agent to use it for Aerobase API authorization. This is disclosed and purpose-aligned, with key-redaction guidance.
Required env var: `AEROBASE_API_KEY`
- Auth header (preferred): `Authorization: Bearer ${AEROBASE_API_KEY}`
- Never print raw API keys in output; redact as `sk_live_***`.Store the API key securely, do not paste it into chat, and rotate it if it is exposed.
Personal travel and sleep-timing details may be sent to Aerobase to generate recommendations.
The skill tells the agent to call an external provider and may include travel, sleep-window, and timezone context in those requests. This is expected for recovery planning and the endpoint is disclosed.
Base URL: `https://aerobase.app` ... Use `/api/v1/recovery/plan` with their likely sleep window and timezone context.
Share only the travel and sleep details needed for the plan, and review Aerobase's privacy terms if the information is sensitive.