ClawHub
Back to skill

Security audit

FastAPI

Security checks across malware telemetry and agentic risk

Overview

This is a FastAPI documentation/helper skill with normal setup and code examples, but users should approve environment-changing commands and harden sample security code before production use.

Install this if you want AI assistance building FastAPI apps. Before letting it act, review and approve package installs, virtualenv creation, server starts, Docker commands, and dependency changes. Treat authentication, CORS, database, and deployment snippets as examples: replace sample secrets, restrict CORS and bind addresses for production, and do not expose sensitive fields through public update schemas.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (3)

Intent-Code Divergence

Medium
Confidence
90% confidence
Finding
The guide explicitly says `secret_name` is a sensitive field that should not be exposed, but the update model still allows clients to submit and modify it. In a real application, this creates an authorization and data-integrity risk because consumers may assume the field is protected while the API permits direct tampering.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The guide explicitly says the AI can directly run package installation commands, which causes network access and modifies the Python environment. In an agent setting, this is risky because it encourages side-effecting actions without an explicit warning, confirmation step, or trust boundary for package sources.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The instructions say the AI can automatically create and activate a virtual environment, which writes files into the project directory and alters the shell/session state. Even though this is a normal setup step, an autonomous agent should not make filesystem and environment changes without clearly disclosing those effects and obtaining confirmation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal