Skillv1.0.0

ClawScan security

Image Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousMar 4, 2026, 12:28 PM

Verdict: suspicious
Confidence: high
Model: gpt-5-mini
Summary: The skill mostly does what it claims (reverse image search via SerpAPI) but has a few inconsistencies and privacy-relevant behaviors you should understand before installing.
Guidance: This skill appears to implement Google Lens searches via SerpAPI (so SERPAPI_KEY is required) and the included Python script is self-contained. Before installing: (1) Understand that if users provide local images the script will automatically upload them to public image-hosting services (freeimage.host by default, or imgbb if you set IMGBB_API_KEY). That means sensitive images will be transmitted to third parties. (2) The metadata only lists SERPAPI_KEY as required, but the code optionally reads IMGBB_API_KEY — consider whether that undocumented env var is acceptable in your environment. (3) The script contains a hardcoded public API key for freeimage.host; review whether you want that dependency. (4) If you plan to use this skill in production, inspect the included script yourself, restrict usage to non-sensitive images, or run it in an isolated environment. If you need the skill but want tighter control over uploads, modify the script to disable automatic uploads or to require an explicit opt-in before sending local files off-host.

Review Dimensions

Purpose & Capability: okName/description align with the code and declared requirement (SERPAPI_KEY). The included script calls SerpAPI's Google Lens engine and returns visual matches, products, and provenance as described.
Instruction Scope: concernSKILL.md and the script instruct the agent to auto-upload local image files to third-party image hosts (default freeimage.host; fallback imgbb.com). That means user images are transmitted to external services (freeimage.host and/or SerpAPI) — a privacy/exfiltration surface that is not obvious from 'identify this image' wording. The README and SKILL.md mention these uploads, but the runtime instructions will perform them automatically for local files.
Install Mechanism: okNo install spec; this is instruction-only plus an included Python script that uses only the stdlib. Nothing is downloaded at install time, and no extra packages are pulled in.
Credentials: concernThe skill declares only SERPAPI_KEY as required (primary credential), which is appropriate for SerpAPI access. However, the script also optionally reads IMGBB_API_KEY to upload images to imgbb if present; that env var is mentioned in README/SKILL.md but is not listed in the declared requires.env metadata (inconsistency). The script also contains a hardcoded public API key for freeimage.host. You should be aware SERPAPI_KEY grants the skill the ability to make queries (and send image URLs) to SerpAPI; any local file will be uploaded to external hosts if used.
Persistence & Privilege: okThe skill is not always-on and is user-invocable. It does not request system-wide persistence or modify other skills. Autonomous invocation is allowed by default but is not combined here with broad unexpected privileges.