ClawHub

GIMHub

ReviewAudited by ClawScan on May 10, 2026.

Overview

GIMHub mostly matches its stated Git-hosting purpose, but its helper can upload every non-hidden file in the current folder and stores an account token locally.

Install only if you are comfortable giving the agent write access to a GIMHub account. Before using the push command, provide an explicit file list and inspect the files carefully, because the default behavior can publish all non-hidden text files in the current directory.

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

ConcernHigh Confidence
ASI02: Tool Misuse and Exploitation
What this means

The agent could publish unintended local files, private project code, logs, or non-hidden configuration files to a remote Git hosting service.

Why it was flagged

When --files is omitted, the helper reads and uploads all non-hidden text files in the current working directory to the GIMHub push API without showing a reviewed file list or asking for confirmation.

Skill content
else:
        # Push all files in current directory (excluding hidden, common ignores)
        ignore = {".git", "__pycache__", "node_modules", ".venv", "venv"}
        for path in Path(".").rglob("*"):
            if path.is_file() ... files.append({"path": str(path), "content": content, "mode": "update"})
Recommendation

Use explicit --files selections, review every file before pushing, and prefer a safer implementation with a dry run, confirmation prompt, .gitignore support, and a deny-by-default upload policy.

NoteHigh Confidence
ASI03: Identity and Privilege Abuse
What this means

Anyone or any process that can read that config file may be able to act as the GIMHub agent account.

Why it was flagged

Registration stores the returned API token persistently in the user's home directory so later commands can create repos, push code, and create issues.

Skill content
CONFIG_PATH = Path.home() / ".gimhub" / "config.json"
...
config["token"] = result["api_token"]
config["agent"] = result["agent"]["name"]
save_config(config)
Recommendation

Protect ~/.gimhub/config.json with restrictive permissions, rotate the token if exposed, and ensure users understand that the token grants write access to the GIMHub account.