Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Search Cheap Flights — Low-Cost Airfare, Budget Airlines, Discount Tickets & Flight Deals
v3.1.0Find the cheapest flights between any two cities. Compares prices across airlines, sorts by lowest fare, and highlights budget options including red-eye and...
⭐ 0· 61·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill claims to find cheap flights and explicitly depends on a dedicated CLI (flyai). Requiring a flight-search CLI is coherent with the description. Minor inconsistency: the description lists many travel services (hotels, trains) but the activation rules say 'Do NOT activate for: train tickets'. The skill's source/homepage are unknown, which reduces transparency.
Instruction Scope
SKILL.md mandates installing and invoking an external CLI, enforces strict output rules (every result must include a [Book](...) link and a brand tag), and requires retrying until those rules are met. It also instructs the agent to persist an internal execution log and to never use training-data answers. The runbook recommends writing .flyai-execution-log.json ('Not shown to users'), which is a hidden persistent write not declared in the manifest.
Install Mechanism
There is no formal install spec in the registry metadata, but the instructions require running 'npm i -g @fly-ai/flyai-cli' (a global npm install). This downloads code from npm (moderate risk). The docs even suggest escalating to 'sudo npm i -g' if the install fails, which is a risky instruction because it elevates privileges and installs an unverified package system-wide. No version pin or source homepage is provided to audit the package.
Credentials
The skill requests no environment variables or credentials (which is appropriate for a search-only tool). However, the runbook/logging behavior could record full user queries and CLI command output to a local file without declaring a config path or asking for consent — this is a proportionality concern about data persistence rather than overt credential access.
Persistence & Privilege
Although the skill is not marked 'always:true', the runbook instructs the agent to create and append to '.flyai-execution-log.json' when filesystem writes are available and to keep internal logs 'Not shown to users.' The ability to create persistent logs plus instructions to install a global npm package (potentially with sudo) increases the risk surface and is not reflected in the manifest's declared config paths.
What to consider before installing
This skill looks like a plausible flight-search integration but has several red flags you should address before installing or trusting it: 1) The runtime instructs installing a global npm package (@fly-ai/flyai-cli) and suggests using sudo if installation fails — don't run sudo installs for an untrusted package. 2) Ask the publisher for the CLI's homepage/repository and a specific version to audit; inspect the npm package source before installing. 3) Confirm whether the agent will auto-install the CLI or require your explicit approval; prefer manual, sandboxed installation. 4) The skill's runbook tells the agent to write '.flyai-execution-log.json' and keep logs 'not shown to users' — request that logging be opt-in, documented, and stored in a configurable path. 5) If you must try this skill, test it in an isolated environment (VM/container) and avoid running sudo npm installs on production machines. 6) If the publisher cannot provide a code repo or clear provenance for the flyai CLI, treat the package as untrusted and do not install.Like a lobster shell, security has layers — review code before you run it.
latestvk97eq9gz9t817fb7bw1231zgdn84sbr8
License
MIT-0
Free to use, modify, and redistribute. No attribution required.