Is file-search safe?
https://clawhub.ai/Xejrax/file-search
The file-search skill is a minimal, documentation-only wrapper around two well-known CLI tools (fd and ripgrep). It contains no executable code, no install hooks, no hidden instructions, and triggered no suspicious behavior during monitored installation. The only notable observations are inherent to the tool's purpose: it enables unrestricted file searching and suggests sudo for package installation.
Category Scores
Findings (5)
LOW Unrestricted file search scope -5 ▶
The skill teaches fd and rg usage without any path restrictions or warnings about sensitive directories. An agent following this skill could search /etc, /home, or other sensitive paths if instructed. This is inherent to the tool's purpose rather than a malicious design choice.
LOW Suggests sudo package installation -5 ▶
The install section recommends 'sudo dnf install fd-find ripgrep'. While these are legitimate, well-known packages from official repos, the sudo elevation is noted. This requires explicit user approval in any standard agent permission model.
INFO CLAUDE.md contains auto-generated activity log -3 ▶
The CLAUDE.md file includes a claude-mem-context section with an auto-generated activity log entry. This is a standard ClawdBot memory artifact and contains no injected instructions or manipulative content.
INFO Lock file references unrelated skill -5 ▶
The .clawhub/lock.json references 'academic-research-hub' skill which is not part of this skill's declared dependencies. This appears to be a workspace-level lock file artifact rather than a dependency of this skill.
INFO Reconnaissance enabler in multi-skill environments -7 ▶
In a multi-skill agent environment, file-search could serve as a reconnaissance tool for a malicious companion skill. However, this risk applies to any search utility and is not specific to this skill's implementation.