Byted Web Search
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This appears to be a real Volcano Engine web-search plugin, but it asks users to put API keys into chat and steers the agent to use this search service very broadly.
Review this skill before installing if you care about credential handling or search privacy. Use the OpenClaw credential/config mechanism instead of pasting API keys into chat, use a scoped revocable key, and be aware that the agent may proactively send many fact-related queries to the external search provider and consume quota.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal engine telemetry is currently stale for this artifact.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An API key pasted into chat may remain in conversation history or context and could be used to consume quota or incur charges if mishandled.
The setup guide recommends placing a service API key directly into the chat rather than only using a credential manager or environment variable.
拿 Key → 直接在聊天框把 Key 发给我(无需编辑配置)
Prefer configuring WEB_SEARCH_API_KEY through OpenClaw credential settings or an environment variable, use a scoped/revocable key, and avoid pasting long-lived secrets into chat.
The agent may route more questions through this external search service, sending queries out and using search quota even when the user did not explicitly request a search.
The skill instructs the agent to prefer this provider over other search skills and to invoke it for a broad range of questions that may rely on external facts.
当环境中存在多个联网搜索类 skill 时,联网搜索场景优先使用本 skill... 若回答可能依赖外部事实,优先调用本 skill 再作答。
Users should review provider selection and consider requiring explicit confirmation for web searches or limiting when this skill is enabled.
This is purpose-aligned for authentication, but it means the skill may use broader local cloud credentials if they are available.
The helper script can load local OpenClaw .env files and use Volcano Engine AK/SK-style credentials in addition to the primary API key.
LEGACY_ENV_PATH = "/root/.openclaw/.env" ... USER_ENV_PATH = str(Path.home() / ".openclaw/.env") ... ak = os.getenv("VOLCENGINE_ACCESS_KEY")Use the least-privileged credential available, prefer the dedicated web-search API key, and verify local .env files do not contain unrelated secrets.
Search queries, and the credential used to authorize them, leave the local agent environment and go to the provider service.
Search requests and the API key are sent to an external provider endpoint, which is expected for a web-search integration but important for users to understand.
INTERNAL_API_URL = "https://open.feedcoopapi.com/search_api/web_search" ... "Authorization": f"Bearer {api_key}"Do not search for highly sensitive private information unless you are comfortable sending it to the provider, and verify the endpoint/provider trust relationship.
Installing or using the skill runs local code from the package, which is normal for this implementation but still requires trusting the publisher.
The skill documents local execution of its Python search client.
cd {baseDir} && python3 scripts/web_search.py "搜索词" [--count 10] [--type image]Install only from a trusted source and review the included script before use in sensitive environments.
A future incompatible or compromised dependency version could affect behavior during local builds or installs.
The package accepts any OpenClaw version for development/peer dependency resolution, which can reduce reproducibility if users build or install it through package tooling.
"devDependencies": { "openclaw": "*" }, "peerDependencies": { "openclaw": "*" }Use a trusted OpenClaw installation and consider pinning compatible dependency versions for reproducible deployments.