Back to skill
Skillv1.0.2
ClawScan security
Intelligent Hotel Lookup · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 13, 2026, 4:48 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's declared purpose (hotel search via FlyAI CLI) matches its instructions and requirements; it is an instruction-only skill that asks you to install the FlyAI npm CLI and optionally set an API key, which is coherent with the described functionality.
- Guidance
- This skill is coherent: it runs a third-party FlyAI CLI to fetch hotel listings and optionally uses an API key for richer results. Before installing: (1) verify the npm package @fly-ai/flyai-cli and its publisher on the npm registry (global npm installs run code on your machine), (2) prefer scoped/limited API keys or ephemeral credentials if you supply FLYAI_API_KEY, and (3) avoid reusing high-privilege keys. The skill does not ask for other system credentials or files, but installing the CLI and trusting its network access are the primary risks to review.
Review Dimensions
- Purpose & Capability
- okName/description match the runtime instructions: the SKILL.md documents running the FlyAI CLI command search-hotel and returning JSON fields like mainPic and detailUrl. Declared runtime (node) is appropriate because the SKILL.md tells the agent to use an npm-installed CLI. Nothing in the instructions requires unrelated credentials, binaries, or system access.
- Instruction Scope
- okThe instructions confine the agent to building and running flyai search-hotel invocations and to using only the returned JSON. The SKILL.md explicitly forbids guessing destination names and forbids calling any other RPCs. It does mention storing an API key via the CLI config for richer results (optional) but otherwise does not direct the agent to read arbitrary files, secrets, or system paths.
- Install Mechanism
- noteNo formal install spec is bundled (instruction-only). The SKILL.md recommends installing @fly-ai/flyai-cli globally with npm, which is a standard but non-trivial step: installing a third-party npm package executes code on the host. This is expected for a CLI-backed skill but carries the usual npm-package risk — verify the package publisher and trustworthiness before installing globally.
- Credentials
- noteMetadata declares no required env vars or credentials, which is consistent with a basic read-only discovery skill. The documentation does mention an optional FLYAI_API_KEY (set via flyai config) for richer results; that optional credential is reasonable for calling a backend but it is not declared in the registry metadata. No other unrelated secrets or credentials are requested.
- Persistence & Privilege
- okThe skill does not request always:true and has no install-time mechanisms that modify other skills or system-wide settings. It is user-invocable and can be invoked autonomously by the agent (platform default), which is expected for a tool of this type.