Proxies search queries to a local searxng instance and returns json-formatted search results with titles, URLs, snippets, and sources.

This skill appears to do only what it claims: send queries to a local searxng at host.docker.internal:8081 and return results. Before installing, ensure you actually run a searxng instance reachable at that address/port from the agent environment (host.docker.internal is commonly used from containers). Be aware queries sent through the skill will be transmitted to that local service—avoid sending sensitive secrets in queries unless you trust the local instance. The stray 'docker exec' line in SKILL.md looks like an editing artifact but is harmless; if you need tighter security, run the skill in a sandboxed environment or restrict the agent's network access to only the expected local host and port.

Package: searxng-web (mcp) Version: Description: web search via local searxng (no brave api key). provides searxng_search(query, count). The `searxng-web` package provides a Node.js tool (`searxng_search`) designed to proxy web search queries to a locally hosted SearXNG instance. The tool constructs a URL targeting `http://host.docker.internal:8081/search` with the user-provided query and a `format=json` parameter. It fetches the JSON response, normalizes the results (title, URL, snippet, source), and outputs them to stdout. Input parameters (`query`, `count`) are validated, with `count` capped between 1 and 10. The hardcoded internal Docker host address (`host.docker.internal`) is a key security control, preventing arbitrary external network requests and significantly mitigating Server-Side Request Forgery (SSRF) risks. The code logic is straightforward, performs standard HTTP requests, and does not exhibit any apparent vulnerabilities for arbitrary code execution, command injection, or data exfiltration.