Maverick Exa
PassAudited by ClawScan on May 13, 2026.
Overview
This instruction-only skill is coherently focused on Exa web and people research, with the main notice that queries go to Exa and use of an Exa API key may be needed.
This appears safe to use if you intend to use Exa MCP for web and people research. Configure the Exa API key carefully, avoid hardcoding or sharing it, and avoid sending private or sensitive search topics to the hosted service unless that matches your privacy requirements.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If configured, an Exa API key may be used by the agent to make searches through the Exa MCP service.
The setup uses an Exa API key placeholder in the hosted MCP URL. This is purpose-aligned for Exa access, but the key is a sensitive credential users should configure deliberately.
https://mcp.exa.ai/mcp?exaApiKey=${MAVERICK_EXA_API_KEY}&tools=web_search_exa,web_search_advanced_exa,people_search_exaUse a scoped or revocable Exa API key, store it as an environment variable or secret rather than hardcoding it, and avoid committing expanded URLs containing the key.
Search terms, research goals, and people-lookup requests may be sent to Exa's hosted service.
The skill connects the agent to a hosted MCP endpoint. The provider and tool list are explicit and purpose-aligned, but user research queries and people-search requests will be processed by Exa.
"type": "streamable-http",
"url": "https://mcp.exa.ai/mcp?exaApiKey=${MAVERICK_EXA_API_KEY}&tools=web_search_exa,web_search_advanced_exa,people_search_exa"Do not send confidential or highly sensitive research queries unless Exa's data handling is acceptable for your use case; keep the fixed tool list unless you intentionally expand it.