Skillv1.0.4

ClawScan security

Baidu Nearby / 百度能力集合 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 29, 2026, 2:45 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's code and instructions match its stated purpose (Baidu search and maps), but there are metadata inconsistencies (registry claims no required env vars while SKILL.md and the scripts require a BAIDU_API_KEY) that you should resolve before trusting it.
Guidance: This skill appears to implement exactly what it claims (Baidu search and map/nearby queries) and only needs a Baidu API key. Before installing: 1) Confirm and correct the metadata inconsistency (registry says no env vars while SKILL.md/code require BAIDU_API_KEY). 2) Only provide a BAIDU_API_KEY you trust for this purpose (do not reuse highly privileged keys). 3) Inspect the included scripts yourself or run them in a sandboxed environment (they perform network requests). 4) Note the _meta.json has a different version/timestamp than SKILL.md — ask the publisher for clarification if you don't trust the owner. If those discrepancies are resolved, the skill is coherent with its stated purpose.

Review Dimensions

Purpose & Capability: noteName/description, SKILL.md, and the three Python scripts all implement Baidu web search, place search, and route planning and request only Baidu-related APIs. The requested credential (BAIDU_API_KEY / BAIDU_AK) is appropriate for the stated functionality. However, the registry-level requirements listed earlier (Required env vars: none) contradict SKILL.md and the code — a manifest inconsistency that should be clarified.
Instruction Scope: okRuntime instructions are limited to exporting BAIDU_API_KEY and running the included Python scripts. The scripts perform HTTP(S) calls only to Baidu endpoints (api.map.baidu.com and www.baidu.com) and do not attempt to read unrelated system files, credentials, or send data to third-party endpoints.
Install Mechanism: okNo install spec (instruction-only) and the code uses only the Python standard library. No downloads from external or untrusted URLs are performed by an installer. The presence of code files with no installer is acceptable but means the scripts will run as-is when invoked.
Credentials: noteThe only sensitive environment variables used in code are BAIDU_API_KEY and BAIDU_AK, which are sensible for Baidu LBS APIs. The proportionality is fine for the stated purpose. The notable issue is that the registry metadata reported 'Required env vars: none' while SKILL.md marks BAIDU_API_KEY as required and the scripts read it — this mismatch could lead to accidental omission of the API key or confusion about what credentials are needed.
Persistence & Privilege: okSkill does not request elevated platform privileges (always:false), does not modify other skills' configs, and has no declared config path or persistence behavior. It only runs when invoked.