N2 Free Search
Free, unlimited web search for AI agents via SearXNG — no API keys needed.
MIT-0 · Free to use, modify, and redistribute. No attribution required.
⭐ 0 · 897 · 5 current installs · 5 all-time installs
MIT-0
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The SKILL.md tells users to add an MCP server that runs "npx -y n2-free-search" (i.e., fetch and execute an npm package). However the skill's registry metadata lists no required binaries or runtime dependencies. That is an inconsistency: running npx requires Node/npm to be present and implies executing remote code from the npm registry — which is plausible for a search proxy but should be declared.
Instruction Scope
Instructions instruct adding a runtime command that will fetch and run code from npm and (in public mode) implicitly use a third-party service to proxy searches. The SKILL.md does not specify which public endpoint will be used in 'public mode' nor does it warn that queries could be logged or inspected by that service. The instructions do not reference unrelated local files, but they do grant broad discretion to run remote code and route potentially sensitive queries off-host.
Install Mechanism
There is no install spec in the registry (instruction-only), but the recommended deployment uses npx to pull and execute an npm package at runtime. That is equivalent to downloading and executing remote code on demand; the package itself is not included in this skill bundle and was not scanned, creating a supply-chain risk and preventing static review of actual behavior.
Credentials
The skill requests no credentials or config paths (which is proportional). It does optionally allow a SEARXNG_URL for self-hosting, which is good. However, lack of required env vars hides the fact that in public mode queries will likely go to an external default server (not declared), which has privacy implications even though no secrets are required.
Persistence & Privilege
The skill is not always-enabled and does not request system-wide persistence or modify other skills. It appears to be invoked on demand via MCP configuration, which is normal and expected.
What to consider before installing
This skill asks you to run an npm package via npx (remote code) but the bundle contains no code for review and doesn't declare Node/npm as a dependency — that is a supply-chain and privacy risk. Before installing: 1) Inspect the linked npm package and GitHub repository (https://www.npmjs.com/package/n2-free-search and https://github.com/choihyunsus/n2-free-search) — review the code, network endpoints, and defaults. 2) Do not run in 'public mode' until you know which backend will receive queries; assume public mode routes your queries through a third-party server that may log them. 3) If privacy is required, self-host SearXNG locally and set SEARXNG_URL to your localhost instance. 4) Avoid blindly using "npx -y" in production; prefer pinned package versions and install into a controlled environment or sandbox. 5) If you cannot audit the npm package, treat this as untrusted: run it only in an isolated environment or decline to install.Like a lobster shell, security has layers — review code before you run it.
Current versionv1.0.0
Download ziplatest
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
SKILL.md
🔍 N2 Free Search — MCP Server Skill
Free, private, unlimited web search for your AI agent. No API keys, no credit cards, no rate limits.
Why Use This?
| Brave Search API | Google Custom Search | N2 Free Search | |
|---|---|---|---|
| Cost | $5 / 1,000 queries | $5 / 1,000 queries | Free forever |
| API Key | Required | Required | Not needed |
| Search Engines | Brave only | Google only | 70+ engines |
Quick Setup
Option 1: Public Mode (Zero Setup)
Add to your MCP config:
{
"mcpServers": {
"n2-free-search": {
"command": "npx",
"args": ["-y", "n2-free-search"]
}
}
}
Option 2: Self-Hosted (Maximum Privacy)
{
"mcpServers": {
"n2-free-search": {
"command": "npx",
"args": ["-y", "n2-free-search"],
"env": {
"SEARXNG_URL": "http://localhost:8080"
}
}
}
}
Available Tools
- n2_web_search — Search the web (Google, Bing, DuckDuckGo + 70 more)
- n2_news_search — Search recent news articles
- n2_image_search — Search for images
- n2_video_search — Search for videos
- n2_suggest — Get search suggestions / autocomplete
Links
- NPM: https://www.npmjs.com/package/n2-free-search
- GitHub: https://github.com/choihyunsus/n2-free-search
- Website: https://nton2.com
Part of the N2 AI Body series — Building the Body for AI
Files
2 totalSelect a file
Select a file to preview.
Comments
Loading comments…