Back to skill
Skillv1.0.0
ClawScan security
Amap Poi Fetch · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 22, 2026, 1:32 PM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The skill’s code and docs match its stated purpose (fetch Amap POI data and produce JSON/Excel), but it embeds a hard-coded Amap API key and has a small doc/code mismatch that could lead to misuse or unexpected attribution/billing — review before running.
- Guidance
- This skill appears to do what it says (Amap POI scraping + Excel export), but it includes a hard-coded Amap API key that will be used by default. Before installing/running: (1) consider supplying your own Amap key with --key or by setting AMAP_KEY in your environment instead of using the embedded key; (2) inspect or remove the DEFAULT_KEY from the script to avoid attributing your queries to the skill owner; (3) be aware of Amap terms of service and rate limits — heavy scraping may violate terms or exhaust quotas; (4) review where files are written (~/.openclaw/workspace/data/) and ensure you’re comfortable with local storage of scraped data; (5) if you need higher assurance, run the script in an isolated environment and/or modify it to remove the hard-coded key and to explicitly document accepted env vars.
Review Dimensions
- Purpose & Capability
- okName/description, SKILL.md, and the included Python script are consistent: the script queries Amap POI and district APIs, saves JSON to ~/.openclaw/workspace/data/<city>_poi, and can export Excel. No unrelated services, binaries, or config paths are requested.
- Instruction Scope
- noteSKILL.md describes how to run the script and where outputs are stored; the runtime instructions stay within the stated scraping/export scope. Minor mismatch: the SKILL.md documents --key and a default owner KEY, while the script also respects an AMAP_KEY environment variable (SKILL.md doesn't mention AMAP_KEY).
- Install Mechanism
- okInstruction-only skill with no install spec and a single Python script. Only runtime dependency is openpyxl (pip), which is declared. No network downloads or archive installs by the installer.
- Credentials
- concernThe script embeds a hard-coded DEFAULT_KEY (0c166a2bf61c1e4e6c96e3b645233e54) that the SKILL.md calls the "owner's key" and will be used unless the user supplies --key or sets AMAP_KEY. Shipping a private API key in the code is disproportionate: it causes requests to be attributed to the owner (quota/billing/usage visibility), allows the owner to monitor usage patterns tied to this key, and could get the key rate-limited or revoked. The skill does not require any unrelated credentials, but the embedded key is a notable risk.
- Persistence & Privilege
- okalways is false and the skill does not modify other skills or system-wide settings. It only writes its own output files under the user workspace (~/.openclaw/workspace/data). No elevated persistence or privileges requested.