Back to plugin
Pluginv0.1.1
ClawScan security
Code Search · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 28, 2026, 9:52 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill implements a read-only MCP adapter that queries a local code-search-api over HTTP; its code, docs, and runtime instructions are consistent with that purpose.
- Guidance
- This skill is coherent and appears to do only read-only queries against a code-search-api service. Before installing: (1) ensure CODE_SEARCH_API_URL points to a trusted endpoint (prefer localhost) so the skill doesn't talk to a remote service you don't control; (2) only set CODE_SEARCH_API_KEY if the local service requires it; avoid setting the pluginConfig apiKeyEnv to the name of any unrelated secret environment variable (otherwise that secret could be sent to the configured service); (3) verify the npm package/source if you need maximum assurance (check checksums or review source in this bundle); (4) as with all MCP plugins, the agent may invoke the skill autonomously by default — that's normal but keep in mind what local services the plugin can reach.
Review Dimensions
- Purpose & Capability
- okName/description match the implementation: the package exposes an MCP server and OpenClaw/Claude plugin that issues HTTP requests to a code-search-api service. The code only implements read-only endpoints (search, projects, stats, health) and does not attempt unrelated functionality.
- Instruction Scope
- okSKILL.md instructs adding the MCP server to compatible clients and setting CODE_SEARCH_API_URL and optionally CODE_SEARCH_API_KEY. Runtime behavior (stdio MCP transport + HTTP calls to the configured service) matches those instructions. There are no instructions to read arbitrary user files or to POST data to unexpected external endpoints.
- Install Mechanism
- okNo install spec in registry (instruction-only), but project is a normal npm package with source and built artifacts included. Installation instructions point at npm/GitHub — no downloads from obscure hosts or extract-from-arbitrary-URL steps.
- Credentials
- noteThe skill reads CODE_SEARCH_API_URL (defaulting to http://localhost:5204) and an optional CODE_SEARCH_API_KEY; this is expected and proportionate. Implementation also supports a pluginConfig field apiKeyEnv (apiKeyEnv defaults to CODE_SEARCH_API_KEY) allowing the plugin to read a named environment variable — if misconfigured this could cause the plugin to read and forward an unrelated secret to the configured code-search API URL. By default nothing is sent externally except the configured API key to the configured service.
- Persistence & Privilege
- okNo always:true, no modifications to other skills or system-wide agent settings. The skill runs as a normal MCP server over stdio and does not request persistent elevated privileges.