cloudsway-search-tob
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: cloudsway-search-tob-test Version: 1.0.0 The skill bundle is benign. The `SKILL.md` provides clear documentation for a web search API skill, and the `scripts/search.sh` script correctly implements the API call. It uses `jq` for robust JSON input validation and `curl --data-urlencode` to safely encode user-provided query parameters, effectively preventing shell injection vulnerabilities. There is no evidence of malicious intent, data exfiltration beyond the stated purpose, or prompt injection attempts against the agent.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Search results or webpage text could influence the agent if treated as instructions rather than as untrusted reference material.
The skill intentionally brings third-party webpage snippets or full content into the model context. That is expected for web search, but web content can contain misleading or instruction-like text.
Search the web and extract intelligent fragments or full-text content directly into the LLM context.
Treat returned snippets, mainText, and content as untrusted data, and do not let webpage text override the user's request or safety constraints.
Anyone with access to the configured key may be able to use the associated Cloudsways search service quota or account privileges.
The script uses an environment-provided access key to authenticate to the configured SmartSearch API endpoint. This is expected for the service integration, but it is still credentialed access.
--header "Authorization: Bearer ${CLOUDSWAYS_AK}"Use a scoped, revocable access key, avoid sharing it in prompts or logs, and verify CLOUDSWAYS_BASE_PATH and CLOUDSWAYS_ENDPOINT before use.
The installation page may not fully communicate the setup requirements or provider provenance, so users could configure credentials without independent verification.
The registry metadata does not identify a source or homepage and does not reflect the env vars, access key, curl, and jq requirements disclosed in SKILL.md. This is not hidden in the artifacts, but it makes pre-install review less complete.
Source: unknown; Homepage: none; Required env vars: none; Primary credential: none
Verify the provider endpoint and source out of band, and ensure curl, jq, and the required CLOUDSWAYS_* variables are intentionally configured.
Search queries and the bearer token would be sent to the configured MCP/server endpoint if this integration is used.
The skill documents an optional MCP client configuration that sends authorized search requests through a remote HTTP MCP endpoint. This is aligned with the search purpose but introduces an external service boundary.
"transport": "streamable_http", "url": "https://searchmcp.cloudsway.net/search/{YOUR_SMARTSEARCH_ENDPOINT}/smart", "headers": { "Authorization": "Bearer {YOUR_SMARTSEARCH_AK}" }Only configure the MCP endpoint if it is trusted, confirm the exact hostname, and protect the bearer token like any other API credential.