ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

ragret-search

v1.0.0

Search, retrieval, or knowledge-base intent when the user does not clearly mean local files only or the open web: curl a remote RAGret API for semantic retri...

0· 19·0 current·0 all-time
by@sugarsong404
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Suspicious
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The skill's name and description match the instructions: it is a thin wrapper that issues curl requests to a RAGret API for semantic retrieval. That capability is coherent with the stated purpose.
Instruction Scope
The SKILL.md contains concrete curl commands and explicit guidance (listing indexes, search endpoint, parse .result). It correctly instructs the agent not to ask for secrets in chat. One small scope concern: it tells the agent to default to a local URL (http://127.0.0.1:8765) if the base URL is unclear, which means the agent may attempt local network calls automatically if the user doesn't confirm—this behavior should be explicit to users.
Install Mechanism
Instruction-only skill with no install spec and no code files; nothing is written to disk and no external packages are pulled in. This is the lowest-risk install surface.
!
Credentials
The SKILL.md expects RAGRET_API_KEY and a BASE/BASE_URL to be present in the local environment and shows curl headers (X-API-Key or Authorization: Bearer). However, the skill metadata declares no required environment variables or primary credential. That mismatch is an incoherence: the skill will need secrets to operate but does not declare them, which could lead to surprising behavior or misconfiguration.
Persistence & Privilege
The skill is not always-enabled and uses default autonomous invocation settings. It does not request system-wide configuration changes or extra persistence from the agent.
What to consider before installing
This skill appears to be a simple helper for querying a RAGret server, but before installing: 1) Note that SKILL.md expects an API key (RAGRET_API_KEY) and a BASE/BASE_URL even though the package metadata doesn't declare those env vars — confirm how you'll supply them (set locally, not pasted into chat). 2) Verify and confirm the RAGret base URL before use (the skill defaults to http://127.0.0.1:8765 if unsure), since that will cause network calls to local or remote hosts. 3) Ensure you trust the RAGret instance you will query (it will receive queries and your API key via curl headers). 4) Ask the publisher to update the skill metadata to declare the required environment variables and primary credential so the permission surface is explicit. If you are uncomfortable with an agent making network requests or providing an API key, do not install or disable autonomous invocation for this skill.

Like a lobster shell, security has layers — review code before you run it.

latestvk971dbg4dtrkka8z8ffvjr7qrh84mr2b

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments