Skillv1.0.0

ClawScan security

smart-hotel-search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 1, 2026, 12:47 PM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's requirements and runtime instructions are internally consistent with its stated purpose (mining Xiaohongshu posts and querying Flyai for booking info), but it depends on third‑party tooling (a Chrome extension + CLI tools) and an unknown upstream source — verify those before installing.
Guidance: This skill appears to do what it says: it searches Xiaohongshu for user reviews (via opencli) and then looks up booking details on Flyai. Before installing or following the install steps, do the following: 1) Verify the provenance of opencli and the Chrome extension (confirm GitHub repo and release integrity). 2) Be aware that opencli's extension/daemon uses your local Chrome login — avoid using it with a browser profile that has sensitive accounts, or use a separate profile. 3) Verify the npm packages (@jackwener/opencli and @fly-ai/flyai-cli) on npm and check recent maintainer activity and reviews. 4) Treat any request to set a FLYAI_API_KEY as you would any API key (use least-privilege key, rotate if needed). 5) Because the skill source/homepage is unknown, consider testing in an isolated environment (separate browser profile or VM) first. If you can't verify the third-party tools' legitimacy, don't install the extension or run opencli setup with your primary browser.

Review Dimensions

Purpose & Capability: okThe skill claims to mine Xiaohongshu content and query Flyai for booking info; the SKILL.md exclusively instructs using opencli (to read Xiaohongshu via the user's Chrome session) and flyai (to query booking data). There are no unrelated environment variables, binaries, or config paths requested, so the requested capabilities align with the stated purpose.
Instruction Scope: noteInstructions explicitly require running opencli xiaohongshu search and flyai search-hotel and to have Chrome logged into Xiaohongshu. That scope matches the purpose, but opencli works by connecting to a browser extension and the user's logged-in browser session — this grants the tooling access to browser state/cookies. The skill's instructions do not ask to read other local files or unrelated credentials, but the reliance on a browser extension is a privacy/security consideration.
Install Mechanism: noteThe skill is instruction-only (no install spec embedded). It references installing two npm CLIs and a Chrome extension from a GitHub releases page. Installing npm packages globally and a browser extension is a common approach here, but installing an extension from releases and running opencli setup involves giving the tool local browser access — verify the extension release authenticity and the npm packages' provenance before installing.
Credentials: okThe skill declares no required environment variables; the installation docs mention an optional FLYAI_API_KEY to improve Flyai results, which is proportionate. There are no unrelated credentials requested. Note: opencli's setup may create local tokens or require connecting to an extension/daemon (not declared as env vars), so check what local files/config are written during setup.
Persistence & Privilege: okThe skill does not request always:true and makes no claims about modifying other skills or system-wide settings. Autonomous invocation is allowed (platform default) but not combined with excessive privileges in this package.