finddata.skill
PassAudited by ClawScan on May 1, 2026.
Overview
This skill appears to be a straightforward FindData API client, but users should know their API key and query text are sent to the external FindData service.
Before installing, confirm you trust FindData with your API key and the queries you send. Prefer setting the key in an environment variable, avoid pasting unrelated secrets into chat, and keep sensitive or private information out of data queries.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Your FindData API key may be placed in the X-API-Key header for requests to the service.
The skill relies on a user-provided FindData API key and directs the agent to use it as the API credential. This is expected for the service, but users should understand the credential is being used by the skill.
If the user provides their key in the message (starts with odh_), extract it and use it directly.
Use a dedicated FindData key with limited privileges if available, avoid sharing unrelated secrets, and revoke or rotate the key if it is exposed.
Questions you ask through this skill may be processed by FindData and related planning or tool-selection systems.
The documentation discloses that user query text is sent to an external API and may involve model/tool-selection services. This matches the skill purpose, but it is still an external data flow.
Endpoint: https://finddata.ai/api/query ... Complex queries ... use LLM planning ... Tool selection is automatic — Voyage AI matches your query to the best tool.
Do not include confidential business plans, personal data, or secrets in queries unless you are comfortable sending them to FindData.