Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Custom Grok Search
v0.1.0使用 xAI Grok 的 Responses API 进行网页搜索与 X/Twitter 搜索;支持官方 xAI 接口,也支持通过公益站或其他第三方 Grok 兼容代理来使用 web_search / x_search。
⭐ 0· 57·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
Name/description match the code: the scripts call the Responses API and request web_search/x_search tools. It also supports official xAI keys or a custom Grok-compatible proxy, which matches the declared purpose. However the registry metadata claimed no required env vars/credentials while the code actively looks for many environment variables and a home config file for API keys (CUSTOM_GROK_APIKEY, XAI_API_KEY, CUSTOM_GROK_BASE_URL, etc.), so the metadata understates the credential/config needs.
Instruction Scope
SKILL.md instructs running the included scripts; the scripts do only API calls and optional image reads. But at runtime they will: (1) load $PWD/.env and ~/.openclaw/.env, (2) read ~/.clawdbot/clawdbot.json for stored API keys, (3) base64-embed image files when --image is used, and (4) perform real network calls to the configured base URL. These file reads and use of a home config file are not surfaced in the registry metadata and could expose secrets from shared config files if present. The selftest script also makes real API calls (not a dry run), which may transmit keys/data externally.
Install Mechanism
No install spec and no external downloads; the skill is instruction+scripts only. There is no installer that pulls arbitrary code from URLs or writes binaries to unusual locations.
Credentials
Although the skill needs an API key to call the Responses API, it reads many environment variables and configuration locations beyond the registry's declared 'none'. In particular it looks for CUSTOM_GROK_APIKEY and XAI_API_KEY, but also CUSTOM_GROK_BASE_URL, CUSTOM_GROK_MODEL, XAI_BASE_URL, GROK_MODEL, XAI_USER_AGENT and will read ~/.clawdbot/clawdbot.json and reuse apiKey values found under multiple possible keys (including entries for other skills). That expands its access surface to other stored credentials and may cause unintended use of unrelated API keys found in the user's config file.
Persistence & Privilege
The skill does not request persistent system presence (always:false) and does not modify other skills or system settings. It runs as normal user-level scripts and spawns child processes only within selftest; no privileged operations are requested.
What to consider before installing
This skill appears to implement the advertised Grok/xAI search functionality, but it reads .env files ($PWD/.env and ~/.openclaw/.env) and ~/.clawdbot/clawdbot.json to find API keys and settings — behavior not declared in the registry metadata. Before installing or running: (1) inspect ~/.clawdbot/clawdbot.json and any .env files to ensure they don't contain unrelated secrets you don't want the script to read; (2) if using a third-party proxy, verify CUSTOM_GROK_BASE_URL is a trusted endpoint because your API key (and optional image data) will be sent there; (3) avoid running selftest unless you want the script to make real external API calls; (4) prefer providing only the minimal API key (official XAI key) rather than broad config files; and (5) if you need stricter control, modify the scripts to only read a single explicit env var you provide rather than searching home config files.scripts/selftest.mjs:18
Shell command execution detected (child_process).
scripts/chat.mjs:44
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.Like a lobster shell, security has layers — review code before you run it.
latestvk978vzx5gm9ddtr5pvrwg1cexx83hvyw
License
MIT-0
Free to use, modify, and redistribute. No attribution required.