Brave Images
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: brave-images Version: 1.0.1 The skill bundle is designed to search for images using the Brave Search API. It explicitly requires and uses the `$BRAVE_API_KEY` environment variable to authenticate with the legitimate `api.search.brave.com` endpoint, as shown in SKILL.md. There is no evidence of data exfiltration to unauthorized endpoints, malicious command execution, persistence mechanisms, or prompt injection attempts to subvert the agent's intended behavior. All instructions and code snippets are directly related to its stated purpose of image searching.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing or using the skill requires providing a Brave API key, which may incur usage against the user's Brave Search subscription.
The skill uses a Brave API key for authentication. This is expected for the stated Brave Search API purpose, but users should notice that the registry metadata lists no required env vars or primary credential.
Requires BRAVE_API_KEY environment variable.
Use a dedicated Brave API key with the minimum necessary subscription permissions, monitor usage, and treat the metadata credential omission as a setup/documentation issue rather than hidden behavior.