Back to plugin
Pluginv1.0.0
ClawScan security
Bearing Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
SuspiciousApr 3, 2026, 3:44 AM
- Verdict
- suspicious
- Confidence
- medium
- Model
- gpt-5-mini
- Summary
- The plugin's code and behavior mostly match a bearing‑search tool, but there are packaging/information mismatches and it will send queries to an external API (api.515813.xyz) with no provenance or privacy notice — review before installing.
- Guidance
- This package appears to implement a legitimate bearing search tool, but note two issues before installing: (1) the registry metadata claimed 'instruction-only' while the bundle contains compiled/source code, local data files, and a Python script — ask the author why and verify the canonical source repository; (2) search requests and part numbers are sent to https://api.515813.xyz/api/ by default, which is an external third‑party endpoint with no homepage or provenance in the metadata. If you will send non‑public or sensitive part numbers, do not install or use the plugin until you verify the API operator and privacy policy. To reduce risk, review the included source files (dist/index.js and src/index.ts and scripts/search_model.py), test the offline search script against the included data, and prefer using an explicit, trusted apiBaseUrl configured in openclaw.plugin.json rather than the default.
Review Dimensions
- Purpose & Capability
- noteName, description, and the JS/TS code all implement bearing search and lookup via an external API and local data files; that capability matches the stated purpose. However registry metadata claimed 'instruction-only' while the package contains compiled code, source, data, and a Python search script — an inconsistency that should be explained by the author.
- Instruction Scope
- concernThe runtime code calls an external API (default API_BASE = https://api.515813.xyz/api/) and will transmit user search parameters and part numbers to that host. The SKILL.md content shown in the manifest appears to contain package.json content (not clear runtime instructions), which is a packaging/documentation mismatch and increases uncertainty about the skill's intended runtime behavior and privacy handling.
- Install Mechanism
- okThere is no install spec (no downloads or extract steps). All dependencies are standard npm packages included in a package-lock; nothing in the install artifacts indicates an installer that fetches arbitrary remote code at install time.
- Credentials
- noteThe skill requires no environment variables, credentials, or config paths (proportionate). However it will send queries and part numbers to a third‑party API (api.515813.xyz) by default — users should consider whether transmitting search terms/part numbers to an unknown external service is acceptable.
- Persistence & Privilege
- okThe skill does not request permanent 'always' inclusion and does not modify other skills or system config. It registers tools for autonomous invocation (normal for plugins) but this combined with external network calls increases blast radius if the plugin were malicious.