ClawHub

Better Tavily Search

v1.0.0

The best skill to retrieve fresh web evidence with Tavily. Use for source finding, link discovery, official documentation lookup, current-event verification,...

1· 69·0 current·0 all-time
by@soymilkwinsagain
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Pending
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, CLI surface in SKILL.md, and the included Python script all target Tavily web retrieval. The only required credential is TAVILY_API_KEY which is appropriate for calling a Tavily API. Required binary (python3) matches the provided script.
Instruction Scope
Instructions and code mainly perform web retrieval via Tavily and explain using either TAVILY_API_KEY or ~/.openclaw/.env for auth (documented in SKILL.md). One small mismatch: the script also reads the TAVILY_API_BASE environment variable (defaults to https://api.tavily.com) but that env var is not called out in the SKILL.md; this lets a user override the API endpoint (an intentional flexibility for some deployments but worth noting).
Install Mechanism
No install spec — the skill is delivered as a script and docs only. The implementation is standard-library Python and makes only HTTPS calls; nothing is downloaded or extracted during install.
Credentials
The primaryEnv is TAVILY_API_KEY (expected). The script also reads ~/.openclaw/.env to find the same key (documented). It additionally reads TAVILY_API_BASE if present (not declared in metadata) which can redirect requests to a different server — functionally useful but worth being aware of because it changes where your API key and queries are sent.
Persistence & Privilege
always is false and the skill does not request permanent presence or modify other skills. It does not write to system-wide configs or ask for unrelated privileges.
Assessment
This skill appears to do exactly what it says: call the Tavily API to search, extract, and map web content. Before installing, confirm you trust the Tavily endpoint and provide a TAVILY_API_KEY. Note that the script will also read ~/.openclaw/.env for the key (documented) and will honor a TAVILY_API_BASE environment variable (not prominently documented) — if you set TAVILY_API_BASE it will send your API key and queries to that URL, so only set it to trusted endpoints (the default is https://api.tavily.com). If you want extra assurance, review scripts/tavily.py yourself; it uses only the Python standard library and makes HTTPS POSTs to the API, with no subprocess execution or other filesystem access beyond reading the .env file.

Like a lobster shell, security has layers — review code before you run it.

latestvk977xa0debmdpr8c7vvyp48ghh83g4qx

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🔎 Clawdis
Binspython3
Primary envTAVILY_API_KEY

Comments