Team Outing Planner
ReviewAudited by ClawScan on May 10, 2026.
Overview
Prompt-injection indicators were detected in the submitted artifacts (unicode-control-chars); human review is required before treating this skill as clean.
Before installing, confirm you trust the flyai CLI/provider and are comfortable with the agent writing and opening ~/team-outing-recommendation.html. Use anonymized team preference data if possible, and review the generated HTML before sharing it. ClawScan detected prompt-injection indicators (unicode-control-chars), so this skill requires review even though the model response was benign.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may invoke the flyai CLI and open a browser/report on the user’s machine as part of the workflow.
The skill tells the agent to run local CLI commands using trip parameters and then open a generated local file. This is disclosed and aligned with the travel-planning purpose, but users should understand that local commands may be executed.
使用 flyai 命令查询推荐目的地的详细信息... flyai search-poi --city-name "{城市名}" --keyword "{目的地}" ... 自动打开:生成后执行 `open ~/team-outing-recommendation.html`Only use this skill if you are comfortable with those local commands. Review or ask for confirmation before command execution, especially when inputs contain unusual characters.
Installing the optional CLI can modify the local Node/npm environment and gives the package normal CLI execution ability.
The README documents a global npm installation of an external CLI package, while the registry requirements list no required binaries. This appears purpose-aligned, but users must trust that package and its provenance.
安装 flyai-cli: ```bash npm i -g @fly-ai/flyai-cli ```
Install the flyai CLI only from an official/trusted source, consider pinning or verifying the package, and avoid unnecessary global installs if a local/isolated install is available.
Names, budgets, dates, preferences, or special needs could remain in the generated local report and be exposed if the file is shared or left on a shared machine.
The skill may collect personal preference/accessibility information and persist outing recommendations to a local HTML file. This is relevant to the purpose, but the resulting report may contain private team details.
每位成员需提供... 特殊需求 | 行动不便 / 恐高 / 晕车 / 饮食限制 / 无 ... 文件路径:`~/team-outing-recommendation.html`
Use summarized or anonymized member data when possible, review the generated HTML before sharing it, and delete the report when it is no longer needed.
Travel cities, destinations, dates, and activity queries may be transmitted to the external fly.ai service.
The skill relies on an external fly.ai/flyai provider flow for destination and hotel data. This is disclosed and central to the skill, but itinerary query details may be sent outside the local conversation.
通过flyai查询详细信息... flyai search-hotel --dest-name "{城市名}" --poi-name "{目的地}" --check-in-date {入住日期} --check-out-date {离店日期}Avoid including unnecessary personal member details in provider queries and review the fly.ai provider’s privacy expectations before using it for sensitive plans.