Back to skill
Skillv1.0.4
ClawScan security
Tavily Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 15, 2026, 12:19 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill appears internally consistent with its stated purpose: it only needs a Tavily API key, calls Tavily's API endpoints, and the provided code and instructions match that behavior.
- Guidance
- This skill is coherent with its description: it will read a TAVILY_API_KEY from a .env file in the skill folder and make HTTPS calls to api.tavily.com, consuming your Tavily credits. Before installing: (1) Verify you trust the Tavily service and the skill source (no homepage or known owner listed). (2) Keep only the API key in the .env (don’t put other secrets there), and use a limited-scope API key if Tavily supports it. (3) Be aware the script disables some urllib3/TLS warnings — this may hide TLS/certificate issues, so confirm network calls go to the legitimate Tavily domain. (4) Run pip installs in an isolated environment (venv) and monitor API usage/credit consumption. If you want higher assurance, inspect the file scripts/search.py locally (it’s small and readable) or run it in an isolated container with a rotated API key.
Review Dimensions
- Purpose & Capability
- okName/description (web search, extraction, crawl, research) align with the included code and docs. The only external network calls are to https://api.tavily.com and the declared env var TAVILY_API_KEY is the expected credential for that service.
- Instruction Scope
- okSKILL.md instructs installing requirements, creating a .env with TAVILY_API_KEY, and calling the included scripts. The runtime instructions do not ask for unrelated files, other credentials, or system-wide data. The code reads the skill-directory .env and uses only the API key.
- Install Mechanism
- okNo install spec in registry; SKILL.md asks users to run 'pip install -r requirements.txt' (requests, urllib3) which is proportional and expected. Nothing is downloaded from arbitrary URLs or installed from untrusted sources.
- Credentials
- okOnly TAVILY_API_KEY is required (declared in SKILL.md). The code does not request other secrets or unrelated environment variables or config paths.
- Persistence & Privilege
- okSkill does not request 'always: true', does not modify other skills, and has no privileged system persistence. It runs on-demand and only uses the API key provided.