Pluginv1.0.0

ClawScan security

ScrapeBadger · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 6, 2026, 3:27 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The plugin code matches its stated purpose (a ScrapeBadger client) and only needs an API key, but there are metadata/instruction inconsistencies and missing runtime guidance that warrant caution before installing.
Guidance: This package's code implements exactly what it claims — a client for scrapebadger.com that scrapes Twitter/X, Vinted, and arbitrary web pages — and it requires a SCRAPEBADGER_API_KEY. However: (1) the package metadata/SKILL.md appears inconsistent or missing (the manifest is shown where runtime instructions should be), so documentation and expected behavior are unclear; (2) the plugin will make network requests to scrapebadger.com and can be asked to fetch arbitrary URLs, which can expose scraped data to that service; (3) confirm you trust scrapebadger.com and limit the API key's permissions; prefer supplying the API key via the plugin config (openclaw.plugin.json supports apiKey) rather than broad environment variable usage; and (4) if you need higher assurance, ask the author for a proper SKILL.md describing runtime behavior, or audit the packaged dist files and the referenced repository to ensure no hidden behavior. If any of these items are unacceptable or you cannot verify the service, do not install.

Review Dimensions

Purpose & Capability: noteThe source code implements scraping tools for Twitter/X, Vinted, and general web scraping and uses a SCRAPEBADGER_API_KEY to call scrapebadger.com — this is coherent with the plugin's stated purpose. However, the registry metadata at the top of the report lists 'Required env vars: none' while openclaw.plugin.json declares SCRAPEBADGER_API_KEY as required, which is an inconsistency.
Instruction Scope: concernThere is no explicit SKILL.md with runtime instructions — the provided SKILL.md content appears to be the package.json manifest rather than human-readable runtime guidance. The plugin code does network calls (fetch) to the ScrapeBadger API and will accept arbitrary URLs to scrape (expected for this tool), but the missing/incorrect SKILL.md means install-time or runtime behavior and expected trust boundaries are not documented properly.
Install Mechanism: okNo install spec is provided (instruction-only-style), dependencies are minimal (@sinclair/typebox, TypeScript dev dep). No external downloads or extract steps are present in the package files, so there is no high-risk install mechanism in the bundle itself.
Credentials: noteThe code legitimately requires a SCRAPEBADGER_API_KEY (and optionally SCRAPEBADGER_API_URL) to contact the service; that credential is proportionate to the stated functionality. The inconsistency between the top-level 'Required env vars: none' and openclaw.plugin.json's 'requires.env' is misleading and should be corrected before trusting the package metadata.
Persistence & Privilege: okThe plugin does not request always:true, does not modify other skills, and does not request system-wide privileges. It performs network calls to the ScrapeBadger API only when its tools are invoked.