Dangerous exec
Critical
- Finding
- Shell command execution detected (child_process).
Godot Game Claw Bridge
Security checks across static analysis, malware telemetry, and agentic risk
Overview
The skill is mostly a Godot project generator, but it writes local files from free-form names and runs a shell command in a way that needs review before use.
Use this only in a dedicated Godot project/workspace, review generated files before committing or running them, avoid path-like names such as ../ in commands, and be cautious with the open command until it uses safer process execution.
Static analysis
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
#
ASI02: Tool Misuse and Exploitation
Medium
What this means
If an agent or user supplies a name containing path traversal such as ../, the tool could write outside the expected project folder or overwrite files without a confirmation step.
Why it was flagged
The CLI writes generated files using the provided name directly. Similar project/scene/component generation paths are shown, with no visible check that the resolved path remains inside the intended Godot project directory.
Skill content
fs.writeFileSync(path.join(scriptsDir, name + '.gd'), content);
Recommendation
Restrict generated names to safe filenames, resolve and verify paths stay inside the project directory, and prompt before overwriting existing files.
#
ASI05: Unexpected Code Execution
Medium
What this means
Running the open command executes whatever godot binary is found on PATH, and unusual directory names containing shell metacharacters could affect the command.
Why it was flagged
The skill runs a shell command to launch Godot and concatenates the current working directory into the command string instead of using a non-shell API with separated arguments.
Skill content
execSync('godot --path "' + PROJECT_DIR + '"', { stdio: 'inherit' });Recommendation
Use execFile/spawn with argument arrays, escape or validate paths, declare Godot as an expected dependency, and avoid running the open command from untrusted or oddly named directories.
#
ASI04: Agentic Supply Chain Vulnerabilities
Low
What this means
Users have less provenance information to verify the package and may not realize it will invoke a local Godot binary for the open command.
Why it was flagged
The package has no source/homepage provenance listed, and the metadata declares only node even though the documented open workflow and code rely on a local Godot executable.
Skill content
Source: unknown; Homepage: none; Required binaries (all must exist): node
Recommendation
Install only if you trust the published package, verify the local code, and ensure the intended Godot executable is first on PATH.