Back to plugin
Pluginv1.0.0
ClawScan security
AIsa Search Command Center · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 24, 2026, 5:01 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The package is internally consistent: it is a search/research skill that requires a single AISA_API_KEY and runs a bundled Python client against api.aisa.one — the requested files, env var, and instructions line up with that purpose.
- Guidance
- This skill is coherent with its stated purpose, but installing it gives the bundled Python client permission to send queries and any provided inputs to https://api.aisa.one using the AISA_API_KEY you supply. Before installing: (1) only provide an API key you intend to use for this third-party service and avoid using keys with broad, unrelated privileges; (2) review AIsa's privacy/data-retention policy if you will send sensitive data; (3) verify the plugin source (repository/homepage) if you need stronger provenance guarantees; and (4) rotate the key if you later uninstall the plugin or suspect misuse.
Review Dimensions
- Purpose & Capability
- okThe name/description (search, research, synthesis) matches the included runtime (Python search_client) and the declared requirement AISA_API_KEY. Required binary (python3) and network target (https://api.aisa.one) are appropriate for a search client.
- Instruction Scope
- okSKILL.md and the bundled scripts limit behavior to running the search client and calling AIsa endpoints. The runtime uses only the declared env var (AISA_API_KEY) and makes HTTP calls to the stated API host; it does not instruct reading unrelated system files or exfiltrating unexpected data.
- Install Mechanism
- okThere is no external install/download step — the package is instruction-only with repository-local scripts and manifests. No archive downloads, URL shorteners, or third-party installers are present.
- Credentials
- okOnly a single API key (AISA_API_KEY) is required and is declared as the primary credential in manifests and SKILL.md. The Python client reads this env var and uses it in Authorization headers — this is proportional to the skill's need to authenticate to the AIsa API.
- Persistence & Privilege
- okThe package is not always-enabled, does not request system-wide privileges, and does not modify other skills. Autonomous invocation is allowed by default (platform behavior) but is not combined with other concerning privileges.