Back to skill
Skillv1.0.0
ClawScan security
X Search (Local) · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 13, 2026, 4:19 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requested environment variables align with its stated purpose (searching X via the xAI Responses API); nothing obvious is requesting unrelated credentials or reaching unexpected endpoints.
- Guidance
- This skill appears to do what it says: a small Python utility that calls the xAI Responses API and returns summarized X posts. Before installing: (1) confirm the x.ai docs/homepage match the API URL used (https://api.x.ai) and that you trust the xAI_API_KEY you will provide; (2) note the minor metadata mismatch (ownerId/slug) in the package metadata — a provenance check may be warranted if you require strict publisher tracking; (3) the install helper is a brew formula (macOS-focused) — on other OSes you only need python3 on PATH; (4) review the included scripts (they are small and readable) and rotate the XAI_API_KEY if you later revoke access. If you do not want CLI tools to directly hold your API key, prefer using ephemeral or scoped credentials or store the key in a secure secrets store and avoid committing it to disk.
Review Dimensions
- Purpose & Capability
- noteName and description map to the included Python script which calls https://api.x.ai/v1/responses using an XAI_API_KEY. Required binaries (python3) and primaryEnv (XAI_API_KEY) are appropriate. Minor metadata inconsistencies exist: the registry metadata lists ownerId 'kn7d8rx6...' and slug 'x-search-local', while _meta.json contains a different ownerId and slug 'x-search'. This is a bookkeeping mismatch but does not affect runtime behavior.
- Instruction Scope
- okSKILL.md limits runtime actions to invoking the included Python script and setting the XAI_API_KEY (or storing it in the agent config). The script only reads that env var, validates CLI flags, and calls the x.ai API. There are no instructions to read unrelated files, other secrets, or to transmit data to endpoints other than api.x.ai.
- Install Mechanism
- noteInstall spec is a single brew formula (python) which only provides python3; this is reasonable for macOS users but may be irrelevant on other OSes. The install does not download arbitrary archives or execute remote code beyond installing a commonly used runtime. No high-risk download URLs are present.
- Credentials
- okThe skill requires a single credential, XAI_API_KEY, which is necessary for the stated xAI API usage. No unrelated secrets or numerous environment variables are requested.
- Persistence & Privilege
- okalways is false and the skill does not request elevated persistence or modify other skills/configs. It does suggest storing the API key in the user's OpenClaw config, which is reasonable and scoped to the skill.