ClawHub

Literature Review

AdvisoryAudited by Static analysis on Apr 30, 2026.

Overview

No suspicious patterns detected.

Findings (0)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

NoteHigh Confidence
ASI04: Agentic Supply Chain Vulnerabilities
What this means

The skill may require a compatible Python environment and dependencies even though the registry does not declare them.

Why it was flagged

The skill relies on a local Python helper script, while the registry shows no install spec or required binaries. This is disclosed and user-directed, but setup requirements are under-declared.

Skill content
python3 scripts/lit_search.py search "impact of glycyrrhiza on bifidobacterium" --limit 5 --source all
Recommendation

Run it only in a trusted Python environment and install any needed dependencies from trusted sources.

NoteHigh Confidence
ASI03: Identity and Privilege Abuse
What this means

If configured, your API keys or email identifier may be used when contacting the named academic services.

Why it was flagged

The script reads optional provider API keys and an email identity from environment variables. This matches the academic API integration, and the visible artifacts do not show hardcoded secrets or unrelated credential use.

Skill content
S2_API_KEY = os.getenv("SEMANTIC_SCHOLAR_API_KEY")
OA_API_KEY = os.getenv("OPENALEX_API_KEY")
USER_EMAIL = os.getenv("USER_EMAIL", os.getenv("CLAWDBOT_EMAIL", "anonymous@example.org"))
Recommendation

Use dedicated, low-privilege API keys where possible and avoid placing secrets directly in prompts or shared logs.

NoteHigh Confidence
ASI07: Insecure Inter-Agent Communication
What this means

Research topics, search terms, and DOI lookups may be visible to the third-party academic API providers.

Why it was flagged

The skill sends literature-search requests to named external academic APIs. This is disclosed and purpose-aligned, but user queries and DOI lookups leave the local environment.

Skill content
S2_BASE_URL = "https://api.semanticscholar.org/graph/v1"
OA_BASE_URL = "https://api.openalex.org"
CR_BASE_URL = "https://api.crossref.org/works"
PM_BASE_URL = "https://eutils.ncbi.nlm.nih.gov/entrez/eutils"
Recommendation

Avoid including confidential, unpublished, or personally sensitive information in search queries unless you are comfortable sharing it with those providers.