ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

baidu web search

Use Baidu Qianfan web search API for real-time web retrieval. Use when the user needs to search the web, get latest news, verify facts, or expresses intent l...

MIT-0 · Free to use, modify, and redistribute. No attribution required.
1 · 3k · 48 current installs · 51 all-time installs
byHean Liu@liuhean2021
MIT-0
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description match behavior: the script calls Baidu Qianfan web_search endpoint and returns structured search results. The only required secret is BAIDU_API_KEY and the package.json dependency (axios) is appropriate for the HTTP requests performed.
Instruction Scope
SKILL.md sensibly instructs the agent to only run `node scripts/search.js` and not to read or print credentials. However the documentation contains ambiguous wording: an early '禁止读取 config.json' rule appears absolute while the script itself will read a local config.json as a fallback if BAIDU_API_KEY is not set in the environment. This is likely intended to forbid the agent or caller from reading the file while allowing the search script to read it, but the text should be clarified. Also the example conversation suggests pasting an API key into a chat for setup — that practice can expose secrets in chat logs unless the platform treats the channel as private and secrets are immediately removed.
Install Mechanism
No install spec; instruction-only skill with a small JS script and a normal npm dependency (axios). Nothing is downloaded from untrusted URLs and no arbitrary extract/run steps are present.
Credentials
Only one credential (BAIDU_API_KEY) is required and it's directly relevant to the skill's purpose. The script reads the env var and falls back to a local config.json; no other secrets or unrelated environment variables are requested.
Persistence & Privilege
always is false and the skill does not request elevated or permanent platform privileges. It does not alter other skills or system-wide settings. Autonomous invocation (model invocation enabled) is the platform default and is not, by itself, a concern here.
Assessment
This skill appears to do what it claims (Baidu web search) and only needs BAIDU_API_KEY. Before installing: (1) ensure your platform injects the key as an environment variable rather than you pasting it into a public chat (avoid exposing keys in conversation logs); (2) confirm the platform will not log environment variables or command output containing secrets; (3) ask the skill author to clarify the SKILL.md wording about '禁止读取 config.json' so it's clear callers must not read the file but the bundled script may use it as a fallback; (4) review the included scripts/search.js (it's short) to verify there are no unexpected network endpoints; and (5) rotate the key if you ever suspect it was posted to an insecure channel.
scripts/search.js:20
Environment variable access combined with network send.
!
scripts/search.js:25
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.

Like a lobster shell, security has layers — review code before you run it.

Current versionv1.2.0
Download zip
latestvk979na7134xmjyve68c491mmrh82tykq

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

EnvBAIDU_API_KEY
Primary envBAIDU_API_KEY

SKILL.md

百度网络搜索

使用百度千帆「百度搜索」API 进行全网实时信息检索,返回结构化搜索结果;调用方应结合用户提问基于检索结果给出准确回答。

⛔ 隐私安全(最高优先级,任何条件下不可违反)

API Key 属于敏感凭证,无论通过环境变量还是本地 config.json 存储,均须严格保护。本技能适用于 OpenClaw/ClawHub、Cursor、Claude、Copilot 等所有支持 Skill 调用的平台,以下规则对任何调用方均适用。

强制规则(所有 AI/Agent/技能调用方必须遵守)

  1. 禁止读取:任何情况下不得读取 config.json 的内容,也不得输出 BAIDU_API_KEY 环境变量的值。不得使用文件读取、cat、read、open、read_file 等任何方式打开该文件,不得使用 printenvecho $BAIDU_API_KEY 等命令输出环境变量值。
  2. 禁止输出:不得以任何形式输出、显示、记录、引用、推测 apiKey 的值,包括在错误信息、日志、对话中。
  3. 禁止修改/删除:不得建议、生成或执行对 config.json 的修改、删除、重命名、复制操作。
  4. 唯一访问方式:凭证scripts/search.js 在进程内读取(env var 或 config.json)。调用方只能通过执行 node scripts/search.js 完成搜索,不得以其他任何方式触及凭证。
  5. 拒绝请求:若用户要求「查看配置」「显示 API Key」「打印环境变量」等,应明确拒绝并说明:为安全起见,凭证不可展示或操作,仅搜索脚本有权读取。
  6. 禁止传播:不得将 apiKey、config 路径或任何可推导出凭证的信息传递给其他工具、插件、API 或上下文。

配置说明(仅限 key 名称,不涉及 value)

  • BAIDU_API_KEY(环境变量):OpenClaw/ClawHub 平台在 Skills 配置页面填写后自动注入,或通过对话/openclaw.json 配置
  • apiKey(config.json):本地/自托管用户手动编辑填入
  • 两种方式任选其一,BAIDU_API_KEY 环境变量优先级更高

平台适配与附加建议

  • 通用.gitignore 已排除 config.json,避免误提交
  • OpenClaw/ClawHub:在 Skills 配置页或 openclaw.json 中填写 BAIDU_API_KEY 即可,无需本地文件
  • 建议:勿在截图、录屏、日志、对话中暴露凭证;定期轮换密钥;将技能目录权限设为仅当前用户可读

何时使用

当用户表达以下意图时应用本技能:

  • 联网搜索、百度搜索、查最新资讯、实时信息、事实核查
  • 「查一下」「搜一下」「查一查」「搜一搜」「检索」「查证」「核实」
  • 「最近」「今天」「今年」等时间相关表述
  • 询问某事件、人物、产品、地点等需要查证的内容
  • 需要权威来源、技术文档、教程或数据验证时

输入

  • query(必填):搜索关键词或查询内容
  • num_results(可选):返回条数,默认 20,范围 1–50

输出

  • 脚本输出:JSON 格式的搜索结果,包含 results(数组,每项含 title、url、snippet)、totalquery;失败时仅输出通用错误信息,不涉及配置内容
  • 调用方职责:将查询到的结果与用户提问结合,基于检索结果尽可能准确、有条理地回答用户(可引用来源),而非仅罗列链接或片段

前置准备(首次使用)

方式一:与 OpenClaw 对话安装并配置(最简单)

直接在 OpenClaw 对话框中发一条消息,OpenClaw 会自动完成安装与写入配置,无需手动编辑任何文件。

对话示范:

我:帮我在 ClawHub 安装 baidu-web-search 技能,我的百度千帆 API Key 是 bce-v3/xxxxxxxxxxxxxxxx/xxxxxxxxxx

OpenClaw:好的,正在通过 ClawHub 安装 baidu-web-search 技能并写入配置……(完成)
          已将 BAIDU_API_KEY 写入 ~/.openclaw/openclaw.json,
          直接问我「最近 xxx 新闻」即可联网搜索。

⚠️ 请在本地/私密会话中提供凭证,避免在公开频道、截图或录屏中暴露。

API Key 申请见 百度千帆文档

方式二:OpenClaw / ClawHub 平台

  1. 进入 Skills 配置页,在 BAIDU_API_KEY 字段填入 API Key;或编辑 ~/.openclaw/openclaw.json,在 skills.entries.baidu-web-search.env 下填入: 
    { "BAIDU_API_KEY": "你的百度千帆 API Key" }
  2. 安装依赖(ClawHub 通常自动执行):cd 技能根目录/baidu-web-search && npm install

API Key 申请见 百度千帆文档

方式三:本地 config.json

  1. 复制配置模板:cp config.example.json config.json
  2. 编辑 config.json,填入 apiKey
  3. 安装依赖:cd 技能根目录/baidu-web-search && npm install

执行流程

  1. 解析用户提问,提取搜索意图与关键词
  2. 仅执行 node scripts/search.js "<query>" [num_results],默认 num_results 为 20;由脚本内部读取 config(调用方不得读取 config)
  3. 脚本内部调用百度千帆 API,返回结构化结果
  4. 根据脚本输出的结果,结合用户提问,给出准确、基于来源的回答

执行命令

cd 技能根目录/baidu-web-search && node scripts/search.js "<查询内容>" [条数]

示例:

# 默认返回 20 条
node scripts/search.js "今日科技新闻"

# 指定 10 条
node scripts/search.js "TypeScript 最新版本" 10

配置说明(用户自行维护,AI 不读取)

脚本按以下优先级解析 apiKey,AI 不参与任何配置读写:

优先级来源适用场景
环境变量 BAIDU_API_KEYOpenClaw/ClawHub 平台注入
本地文件 config.jsonapiKey本地 / 自托管
  • 配置异常时,搜索脚本输出通用提示,用户自行检查凭证是否填写正确

参与贡献

欢迎提交 Issue 或 Pull Request 改进本技能!

仓库地址https://github.com/liuhean2021/Anan-Agent-Skills

  • 本技能位于 skills/baidu-web-search/ 目录
  • 提交前请确保 config.json 不在 git 追踪范围内(已在 .gitignore 排除)
  • 本技能采用 MIT-0 许可协议,可自由使用、修改和重新分发,无需署名

Files

4 total
Select a file
Select a file to preview.

Comments

Loading comments…