Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Overnight Flights
v3.2.1Find overnight and late-night departure flights — often 20-40% cheaper than daytime. Save a hotel night by flying while you sleep. Also supports: flight book...
⭐ 0· 49·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The skill's functionality (search/book flights) matches the CLI commands shown (flyai search-flight). However the description claims "powered by Fliggy (Alibaba Group)" while the runtime explicitly requires a third-party CLI named @fly-ai/flyai-cli and branding instructs "Powered by flyai" — this mismatch is unexplained and could indicate inaccurate metadata or misattribution.
Instruction Scope
SKILL.md tightly constrains answers to CLI output only (reasonable for real-time pricing) but also instructs the agent to persist a runbook log to .flyai-execution-log.json if filesystem writes are available. That log includes full user_query and CLI command results — personal data could be written to disk without the user's explicit consent. The instructions also require global npm installation if flyai-cli is missing and advise escalating to sudo, which expands scope of actions the agent will take.
Install Mechanism
There is no formal install spec in registry metadata, but SKILL.md mandates running `npm i -g @fly-ai/flyai-cli`. Installing a global npm package is a non-trivial operation (may require sudo, runs arbitrary install scripts). The package name is not a well-known system package; the registry/source is not verified in the skill. Instruction-only skills that ask users/agents to install third-party CLIs carry moderate risk.
Credentials
The skill does not request any environment variables, credentials, or config paths. That is proportionate to the stated purpose. However, the implicit local log file (.flyai-execution-log.json) is not declared in required config paths and effectively grants the skill persistent local storage.
Persistence & Privilege
always is false (good). However the runbook directs persisting execution logs to a local file if writes are available; the skill doesn't declare or ask permission for this storage. Combined with the global npm install instruction, this yields persistence and elevated local effect without explicit configuration in the registry metadata.
What to consider before installing
This skill appears to do what it claims (use a CLI to fetch live flight data), but there are a few things to check before installing or running it:
- Confirm the CLI publisher: `@fly-ai/flyai-cli` is not verified in the skill metadata. Installing a global npm package runs code on your machine and may require sudo — verify the package on the npm registry and the publisher before running `npm i -g`.
- Local logging: the runbook instructs writing .flyai-execution-log.json containing user queries and CLI commands. Decide whether you’re comfortable with those logs being created locally; consider running the skill in a sandbox or container if unsure.
- Branding mismatch: the description mentions "Fliggy (Alibaba Group)" but runtime and output branding reference "flyai". Ask the skill author to clarify the data source and booking partner before trusting booking links.
- Least-privilege: prefer installing the CLI in a user-local, non-sudo manner (e.g., npx or a local virtual environment) if possible, and inspect the package source first.
If you need higher assurance, request the skill author to: provide a verified CLI package link (official domain or GitHub), remove or make logging optional and documented, and fix the Fliggy/flyai attribution mismatch.Like a lobster shell, security has layers — review code before you run it.
latestvk97eba0shz4pesnmjt092pv6v984mgv1
License
MIT-0
Free to use, modify, and redistribute. No attribution required.