Skillv1.1.0

ClawScan security

🔍 惠迈智能搜索 · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

BenignApr 29, 2026, 5:45 AM

Verdict: benign
Confidence: high
Model: gpt-5-mini
Summary: The skill is a coherent Tavily web-search/extract integration that only requests a single API key and provides inline docs and a CLI; nothing in the package suggests unrelated or excessive access.
Guidance: This package appears to do what it says: it uses the Tavily API and only needs TAVILY_API_KEY. Before installing, (1) confirm you store the API key securely (env var or secrets manager) and do not paste it into chat logs, (2) inspect the bundled scripts/scripts/tavily.py locally to verify it only calls https://api.tavily.com and only reads the declared env var, (3) be cautious using include_raw_content or large extract operations (may leak or return large amounts of page content), and (4) note the small metadata mismatch where the registry shows no primary credential but SKILL.md marks TAVILY_API_KEY as primary — this is likely a packaging oversight but worth correcting. If you require stronger assurance, ask for the full tavily.py source to be reviewed line-by-line before enabling autonomous invocation.

Purpose & Capability: okName/description, required env var (TAVILY_API_KEY), outbound host (api.tavily.com), docs and bundled CLI all align with a web search/extract integration. No unrelated credentials or binaries are requested.
Instruction Scope: okSKILL.md confines runtime behavior to using the Tavily APIs (search/extract/research), instructs use of the bundled Python CLI or curl to api.tavily.com, and warns not to paste keys. It does not instruct reading unrelated files or sending data to other endpoints.
Install Mechanism: okNo install spec is provided (instruction-only), so nothing is downloaded or installed. A bundled Python script is included but not auto-installed; this is low-risk. The skill expects a Python runtime (normal for a CLI script).
Credentials: noteThe skill only requires one env var (TAVILY_API_KEY), which matches the declared purpose. Minor inconsistency: the registry metadata listed 'Primary credential: none' while SKILL.md declares primary_credential: TAVILY_API_KEY — this is a metadata mismatch to be corrected but does not indicate extra privileges.
Persistence & Privilege: okalways:false and user-invocable:true (defaults) — no elevated or permanent privileges requested, and the skill does not declare modifications to other skills or system-wide settings.