Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Andara Rag Search
v1.0.0Search the Andara Ionic RAG knowledge base (3,800+ records) for business intel, research, products, team, meetings, and any indexed content.
⭐ 0· 156·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The skill claims to search a Postgres-backed RAG which legitimately requires DB access. However, the metadata lists no required env vars or binaries even though the instructions require psql and a DATABASE_URL. That mismatch is disproportionate to the declared requirements.
Instruction Scope
SKILL.md explicitly instructs the agent to run psql queries against a knowledge_base and other tables. It also references truncation and read-only rules, but the agent would need direct DB credentials to run these commands. The instructions give the agent ability to run arbitrary SQL via psql; there is no explicit technical constraint preventing broader queries beyond the 'read-only' guideline.
Install Mechanism
Instruction-only skill with no install spec or downloaded code. This minimizes disk persistence and supply-chain risk.
Credentials
The instructions rely on an environment variable (DATABASE_URL) that is not declared in requires.env or primary credential. That implies the skill expects database credentials but does not declare them, which is a transparency/permission mismatch. The tables described include sensitive fields (emails, orders, equity_percent), so DB credentials should be least-privileged and explicitly requested.
Persistence & Privilege
always is false and there are no install-time changes or config paths. The skill does not request persistent or elevated platform privileges in its metadata.
What to consider before installing
Before enabling this skill, be aware it requires direct read access to your Postgres database (it expects DATABASE_URL and the psql client). The skill metadata does not declare these needs — ask the publisher to update requires.env and required binaries. If you proceed, provide a dedicated, read-only database user scoped to only the tables/columns needed (avoid production superuser credentials), consider using a read-replica, and review the exact SQL the agent will be allowed to run. Note that while SKILL.md says 'read-only', the agent runs psql and could run other SQL unless you enforce restrictions at the DB/user level. If you cannot provide a tightly-scoped read-only DB user and cannot verify the skill author, treat this skill as risky.Like a lobster shell, security has layers — review code before you run it.
latestvk979ax23ydxbkyetxxrpr8aa0x835vfs
License
MIT-0
Free to use, modify, and redistribute. No attribution required.