The skill risks command injection and SSRF due to uns
Claims to do
Web Search Plus: **Stop choosing search providers. Let the skill do it for you.**
Actually does
This skill executes Python scripts to perform web searches. It reads API keys from environment variables or a configuration file and uses them to make API calls to various search providers including Serper, Tavily, Querit, Exa, Kilo (for Perplexity), You.com, and a user-configured SearXNG instance. It automatically routes queries to the most suitable provider based on query analysis, and can fall back to other providers if one fails.
openclaw skills install robbyczgw-cla/web-search-plusThe skill explicitly requires `python3` and `bash` and invokes Python scripts (`scripts/search.py`) with user-provided query strings (`-q`) and other parameters. If these scripts do not properly sanitize user input before constructing shell commands or API requests, it could lead to arbitrary command execution.
metadata: {"openclaw":{"requires":{"bins":["python3","bash"]...}}}, `python3 scripts/search.py -q "Tesla Model 3 price"`The skill accepts user-provided URLs (e.g., `--similar-url` for the Exa provider). While SSRF protection is explicitly mentioned for the SearXNG instance URL, it is not stated for other providers or general URL handling, creating a potential SSRF vulnerability if not universally applied.
`python3 scripts/search.py -p exa --similar-url "https://stripe.com"`
The skill's core functionality relies on external Python scripts (`scripts/setup.py`, `scripts/search.py`) whose content is not provided for analysis. The security posture of the skill is highly dependent on the implementation details of these scripts, particularly regarding input sanitization and API key handling.
`python3 scripts/setup.py`, `python3 scripts/search.py -q "..."`
[](https://mondoo.com/ai-agent-security/skills/clawhub/robbyczgw-cla/web-search-plus)<a href="https://mondoo.com/ai-agent-security/skills/clawhub/robbyczgw-cla/web-search-plus"><img src="https://mondoo.com/ai-agent-security/api/badge/clawhub/robbyczgw-cla/web-search-plus.svg" alt="Mondoo Skill Check" /></a>https://mondoo.com/ai-agent-security/api/badge/clawhub/robbyczgw-cla/web-search-plus.svgSkills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.