Skillv1.0.0

ClawScan security

AEO Prompt Question Finder · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignFeb 15, 2026, 5:34 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code and instructions match its stated purpose (querying Google Autocomplete and optionally fetching DataForSEO volumes); it is coherent, with a small note that DataForSEO credentials may be read from the macOS Keychain or environment variables when volume lookup is requested.
Guidance: This skill appears to do what it says: fetch Google Autocomplete suggestions and — if you opt in with --volume — query DataForSEO for search volumes. If you use the volume feature, the script will (in order) try to read credentials from your macOS Keychain using the 'security' command and/or use DATAFORSEO_LOGIN and DATAFORSEO_PASSWORD environment variables, then send those credentials to api.dataforseo.com via HTTP Basic auth over HTTPS. If you don't want to expose those credentials, do not use --volume or provide credentials in a controlled way (e.g., temporary env vars). Note the Google Autocomplete endpoint is unofficial and heavy/parallel use can trigger rate limits or IP blocking; use the documented --delay for batch runs. The small metadata inconsistency: credentials are optional but not listed in required.env — this is not harmful but be aware the skill may access your Keychain only when volume lookup is requested. If you have concerns, run the script locally in a controlled environment, inspect network traffic, or avoid providing DataForSEO credentials.

Purpose & Capability: okThe name/description match the included script: it queries Google Autocomplete for question-prefixed queries and can optionally enrich results with DataForSEO volume data. The DataForSEO integration is a reasonable extension of the stated purpose.
Instruction Scope: noteSKILL.md and the script instruct the agent to make network requests to suggestqueries.google.com and (optionally) api.dataforseo.com. The script also uses the macOS 'security' command to read Keychain entries only when volume lookup is enabled. There is no instruction to read unrelated files or secrets beyond the documented DataForSEO credentials.
Install Mechanism: okNo install spec; the skill is instruction-only plus an included Python script. Nothing is downloaded or installed by the skill itself.
Credentials: noteThe registry metadata declares no required env vars, but the script optionally reads DATAFORSEO_LOGIN/DATAFORSEO_PASSWORD or macOS Keychain entries when --volume is used. This is proportionate to the optional volume feature, but it is an undeclared (optional) credential access in the metadata.
Persistence & Privilege: okThe skill does not request persistent or elevated privileges, does not set always:true, and does not modify other skills or global agent settings.