Tavily Search with Multi-Key
PassAudited by ClawScan on May 1, 2026.
Overview
This appears to be a straightforward Tavily web-search wrapper, with expected notes around API-key use, third-party search queries, small local state, and inconsistent package metadata.
This skill is reasonable for Tavily-backed web search. Before installing, make sure you are comfortable providing a Tavily API key, sending search terms to Tavily, treating web snippets as untrusted content, and accepting the small local key-rotation state file.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Search result snippets or summaries could include untrusted text; the agent should use them as evidence, not follow them as commands.
The skill intentionally returns third-party web snippets and answer text. That is central to search, but retrieved web content can contain misleading or instruction-like text.
Returns a small set of relevant results (title, url, snippet) and can optionally include short answer summaries.
Treat Tavily results as untrusted web content and verify important claims before acting on them.
Your Tavily API key will be used for searches and may incur usage under your Tavily account.
The script places the Tavily API key in the request payload along with the search query. This is expected for Tavily API use, though the registry metadata lists no primary credential or required environment variables.
payload = {
"api_key": key,
"query": query,Use a Tavily key intended for this skill, keep it scoped/rotated as appropriate, and avoid sharing the key in prompts or outputs.
Search terms are shared with Tavily, so sensitive or private queries may leave the local environment.
The skill sends user search queries to Tavily's external API endpoint. This is disclosed and purpose-aligned for a web search skill.
TAVILY_URL = "https://api.tavily.com/search"
Avoid using the skill for confidential searches unless sharing those terms with Tavily is acceptable.
It may be harder to confirm the exact origin or release identity of this package.
The bundled metadata does not match the registry listing for slug/version, and the registry source/homepage are absent. This is a packaging/provenance inconsistency, not evidence of malicious runtime behavior.
"slug": "openclaw-tavily-search", "version": "0.1.0"
Prefer installing from a trusted publisher or verify that the packaged metadata mismatch is expected.
The skill leaves a small local state file to remember which API key to use next.
The script persists only a key-rotation index in the user's OpenClaw directory. This is limited local state and aligns with the multi-key rotation feature.
_STATE_FILE = pathlib.Path.home() / ".openclaw" / ".tavily-index"
If you do not want persistent rotation state, remove ~/.openclaw/.tavily-index or use a single Tavily API key.