ClawHub

Baidu Search 1.1.0

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Baidu search wrapper; it uses a Baidu API key and sends search requests to Baidu, with minor provenance metadata inconsistencies to verify.

This skill appears coherent for Baidu web search. Before installing, confirm the publisher/version because the registry and _meta.json metadata do not match, and use a dedicated Baidu API key. Do not send confidential information in search queries unless you are comfortable sharing it with Baidu.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#
ASI03: Identity and Privilege Abuse
Low
What this means

The key may authorize Baidu API usage or billing for searches made through this skill.

Why it was flagged

The script reads a Baidu API key from the environment and uses it as a bearer credential for the Baidu search API. This is expected for the stated purpose, but it is still delegated account authority.

Skill content
api_key = os.getenv("BAIDU_API_KEY") ... "Authorization": "Bearer %s" % api_key
Recommendation

Use a dedicated, least-privileged Baidu API key where possible, keep it out of prompts and logs, and rotate it if you no longer trust the skill environment.

#
ASI07: Insecure Inter-Agent Communication
Low
What this means

Search terms and filter parameters may be visible to Baidu as part of normal API use.

Why it was flagged

The script sends the search query and filters to Baidu's external API. This is disclosed and purpose-aligned, but any sensitive text in a query is shared with that provider.

Skill content
url = "https://qianfan.baidubce.com/v2/ai_search/web_search" ... requests.post(url, json=requestBody, headers=headers)
Recommendation

Avoid placing secrets, private personal details, or confidential business data in search queries unless sharing them with Baidu is acceptable.

#
ASI04: Agentic Supply Chain Vulnerabilities
Low
What this means

It may be harder to confirm that the reviewed artifact corresponds exactly to the intended registry package or publisher.

Why it was flagged

This differs from the supplied registry metadata showing a different owner ID, slug, and version. The code behavior still aligns with the skill purpose, but the mismatch is a provenance/version ambiguity.

Skill content
"ownerId": "kn7akgt520t01vgs2tzx7yk6m180kt26", "slug": "baidu-search", "version": "1.1.0"
Recommendation

Verify the package source, publisher, and version before installing, especially before providing a real API key.