MiniMax Coding Plan

PassAudited by ClawScan on May 10, 2026.

Overview

This appears to be a straightforward MiniMax web-search and image-analysis wrapper, with expected but important use of MiniMax credentials and external API calls.

This skill is reasonable to install if you want MiniMax-native search or image understanding. Before using it, verify that your MiniMax credential/profile and API host are the intended ones, and avoid sending sensitive images or prompts unless that is acceptable for your use case.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low

#ASI03: Identity and Privilege Abuse

What this means

The skill can use an existing MiniMax credential from the local OpenClaw environment rather than asking for a new login each time.

Why it was flagged

The wrapper authenticates using a MiniMax API key or a token from the local OpenClaw auth profile store and sends it as a bearer token to the configured MiniMax API host.

Skill content

env_key = os.environ.get("MINIMAX_API_KEY", "").strip() ... profile = profiles.get(DEFAULT_PROFILE) or {} ... "Authorization": "Bearer %s" % load_api_key()

Recommendation

Use this only with the intended MiniMax account, and ensure MINIMAX_API_HOST and any auth-profile environment settings point to the expected MiniMax endpoint/profile.

Low

#ASI07: Insecure Inter-Agent Communication

What this means

Images and prompts provided to this tool leave the local environment and are processed by MiniMax.

Why it was flagged

For image understanding, the script reads the user-provided local file or fetched URL, base64-encodes it, and sends it with the prompt to MiniMax.

Skill content

data = path.read_bytes() ... return "data:%s;base64,%s" % (mime, encoded) ... result = post_json("/v1/coding_plan/vlm", {"prompt": args.prompt, "image_url": image_url})

Recommendation

Do not use private, confidential, or regulated images unless you are comfortable sending them to MiniMax under that service's terms.

Info

#ASI04: Agentic Supply Chain Vulnerabilities

What this means

Users have less external context for verifying the publisher or upstream project.

Why it was flagged

The package provenance is not externally linked in the provided metadata, although the included code is small and fully visible in the supplied artifacts.

Skill content

Source: unknown; Homepage: none

Recommendation

Review the included scripts and install only if you trust the registry publisher and intended MiniMax integration.