ClawHub

CAD Agent

ReviewAudited by ClawScan on May 10, 2026.

Overview

The CAD workflow is coherent, but it asks you to run an unreviewed background Docker HTTP service that accepts code and may be exposed on port 8123.

Install only if you are comfortable building and running the linked Docker project. Keep the service local, avoid exposing port 8123 to a network, inspect or pin the repository before building, and stop the background container when you are done.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Medium
#ASI02: Tool Misuse and Exploitation
What this means

If the port is reachable by other users or devices, they may be able to submit code to the CAD container.

Why it was flagged

The documented setup publishes an HTTP service that runs submitted build123d code, and the artifact does not describe authentication, loopback-only binding, or other access limits.

Skill content
`docker run -d --name cad-agent -p 8123:8123 cad-agent:latest serve`; `server binds to 0.0.0.0:8123`; `POST /model/create | Run build123d code`
Recommendation

Run only on trusted machines, bind the port to 127.0.0.1 where possible, do not expose it to a network, and prefer a version that documents authentication or access controls.

Low
#ASI04: Agentic Supply Chain Vulnerabilities
What this means

You would be trusting code from the linked repository, which could change over time.

Why it was flagged

The reviewed skill contains only instructions; the runnable server code is pulled from an external repository and built locally, so this scan did not inspect the actual Dockerfile or server implementation.

Skill content
`git clone https://github.com/clawd-maf/cad-agent.git` and `docker build -t cad-agent:latest .`
Recommendation

Inspect the repository and Dockerfile before building, pin to a known commit, and verify that the container does not mount sensitive host paths or request unnecessary privileges.

Low
#ASI10: Rogue Agents
What this means

The service may remain active and listening on port 8123 until you stop or remove the container.

Why it was flagged

The setup runs the CAD server in detached mode, meaning it continues running in the background after setup.

Skill content
`docker-compose up -d` and `docker run -d --name cad-agent ...`
Recommendation

Stop the container when finished, for example with Docker or docker-compose commands, and check that port 8123 is not exposed longer than needed.