ClawHub

Fastapi

Security checks across malware telemetry and agentic risk

Overview

This is a coherent FastAPI tutorial skill, with normal development commands and examples but no hidden execution, exfiltration, or destructive behavior.

Install only if you want AI assistance with FastAPI development. Review and approve package installs, generated files, test runs, and server-start commands before execution, and prefer localhost bindings unless you intentionally want the API reachable from other machines.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (5)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The guide explicitly says the AI can directly execute package installation commands, which causes network access and modifies the environment by installing software. In an agent setting, this is risky because it normalizes state-changing actions without requiring user confirmation or clearly warning about side effects, increasing the chance of unintended system modification or supply-chain exposure.

Missing User Warnings

Low
Confidence
89% confidence
Finding
The instructions tell the AI it can create and activate a virtual environment, which writes files into the project directory and alters the active shell context. While relatively limited in scope, this is still an environment-modifying action that should not be implied as safe to perform automatically without disclosure and approval.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The guide explicitly states that AI may automatically generate and run code, which can cause an agent to execute commands on a user's machine without an explicit consent step. Even though the example is simple FastAPI code, normalizing autonomous execution increases the risk of unintended command execution, package installation, file creation, or environment changes.

Missing User Warnings

Medium
Confidence
98% confidence
Finding
The example recommends binding the development server to 0.0.0.0 without warning that this exposes the service on all network interfaces rather than only localhost. In an AI-assisted setting, a user or agent may run this verbatim and unintentionally make a development API reachable from other hosts on the local network or beyond, depending on firewall and port exposure.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The testing section says AI can automatically generate and execute tests, again encouraging autonomous code execution without a user approval boundary. Test execution can trigger imports, setup code, network access, filesystem writes, or other side effects, so treating tests as inherently safe is dangerous.

VirusTotal

56/56 vendors flagged this skill as clean.

View on VirusTotal