Security Audit

exa-web-search-free

github.com/openclaw/skills

AI SkillCommit 13146e6a3d46

TRUSTED

Scanned about 2 months ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

exa-web-search-free received a trust score of 82/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.

SkillShield's automated analysis identified 2 findings: 0 critical, 1 high, 1 medium, and 0 low severity. Key findings include Potential Command Injection via `mcporter call`, Unpinned `mcporter` binary dependency.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.

Last analyzed on February 12, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

100%

Static Code Analysis

100%

Dependency Graph

100%

LLM Behavioral Safety

78%

Behavioral Risk Signals

Network Access

1 finding

Shell Execution

1 finding

Dynamic Code

1 finding

Security Findings2

Severity	Finding	Layer	Location
HIGH	Potential Command Injection via `mcporter call` The skill instructs the LLM to use the `mcporter` binary with user-controlled parameters (e.g., `query`, `companyName`). If the LLM constructs `mcporter call` commands using untrusted user input without proper sanitization or escaping, and `mcporter` or the underlying `exa` service processes these parameters in a way that allows shell command execution, it could lead to command injection. The `mcporter` binary is an external executable, and its interaction with user-provided strings should be carefully secured. Implement strict input validation and sanitization for all user-provided parameters passed to `mcporter call`. Ensure `mcporter` itself is robust against command injection through its arguments. Consider sandboxing the execution environment for `mcporter`.	LLM	SKILL.md:20
MEDIUM	Unpinned `mcporter` binary dependency The skill's manifest declares a dependency on the `mcporter` binary without specifying a version. This introduces a supply chain risk, as an updated or compromised version of `mcporter` could be installed, potentially introducing vulnerabilities or malicious behavior without the skill developer's explicit approval. Pin the `mcporter` binary dependency to a specific, known-good version in the skill's manifest to ensure deterministic and secure installations.	LLM	SKILL.md:1

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/0a44b77a8ca174c8.svg)](https://skillshield.io/report/0a44b77a8ca174c8)