web-search-skill
Security checks across malware telemetry and agentic risk
Overview
This appears to be a coherent web-search helper that runs a local Python script and queries Baidu/Bing; the main things to notice are external search-query sharing and unpinned Python dependencies.
This skill looks reasonable for web search. Before installing, be aware that it requires manual Python dependency installation, sends your search terms to external search engines, and may feed untrusted web-page text into the agent's reasoning. Avoid searching for secrets or confidential data.
VirusTotal
63/63 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing unpinned packages can pull newer or changed dependency versions than the skill author tested.
The skill asks for third-party Python packages to be installed without version pins or an install specification. This is common for Python helper tools, but users depend on the current PyPI packages they receive.
pip install requests beautifulsoup4 lxml -q
Install dependencies from a trusted environment and consider pinning known-good versions if reproducibility matters.
A malicious or low-quality web page could influence the agent's answer if treated as authoritative.
The skill intentionally places search-result snippets and optionally fetched web pages into the agent's working context. That is expected for search, but external web content can contain misleading or adversarial instructions.
阅读搜索结果,提取与用户问题相关的信息...使用 WebFetch 工具访问搜索结果中的具体链接获取完整页面内容。
Treat search results and fetched pages as untrusted evidence, ignore instructions embedded in pages, and verify important claims against reliable sources.
Search terms may be visible to the search providers, so private or secret information should not be used as queries.
The script sends the user's search query parameters to Baidu and Bing. This is core to the skill's purpose, but it is still an external data flow.
session.get("https://www.baidu.com/s", params=params, ...)
session.get("https://cn.bing.com/search", params=params, ...)Use the skill for non-sensitive searches and avoid sending credentials, confidential business data, or personal secrets in search terms.