FRITZ!Box

ReviewAudited by ClawScan on May 10, 2026.

Overview

This skill is purpose-aligned for controlling a local FRITZ!Box router, but it requires router credentials and can make real network or smart-home changes, so users should configure it carefully.

Install only if you want an agent to manage your FRITZ!Box. Use a dedicated limited FRITZ!Box account, confirm destructive actions carefully, verify FRITZBOX_HOST is your local router, and keep the .env file private.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Medium

#ASI02: Tool Misuse and Exploitation

What this means

If invoked accidentally, the skill could disrupt network access or change the state of connected devices.

Why it was flagged

These commands can disconnect Wi-Fi, force an internet reconnect, or turn physical smart-home devices on and off.

Skill content

`wlan off` / `wlan on` ... `reconnect` ... `smarthome switch <ain> off` / `on`

Recommendation

Keep the confirmation requirement in place and only approve actions that name the exact router or smart-home change you want.

Medium

#ASI03: Identity and Privilege Abuse

What this means

The configured account can authorize router and smart-home actions supported by the skill.

Why it was flagged

The skill requires FRITZ!Box credentials and host configuration to authenticate to the user's router.

Skill content

FRITZBOX_USER=your_username
FRITZBOX_PASSWORD=your_password
FRITZBOX_HOST=fritz.box

Recommendation

Use a dedicated least-privilege FRITZ!Box user, protect the .env file, and avoid using a full admin account unless necessary.

Low

#ASI03: Identity and Privilege Abuse

What this means

This reduces the risk of accidentally sending router credentials to an internet host, but local network host configuration still matters.

Why it was flagged

The code attempts to prevent credentials from being sent to public hosts by resolving FRITZBOX_HOST and allowing only local/private addresses.

Skill content

if not (addr.is_private or addr.is_loopback or addr.is_link_local):
            raise ValueError(

Recommendation

Verify FRITZBOX_HOST points to your own FRITZ!Box, preferably by using its known local IP address.

Low

#ASI04: Agentic Supply Chain Vulnerabilities

What this means

Future dependency versions could change behavior, although requests is a standard library dependency for this purpose.

Why it was flagged

The Python dependency is specified with a lower bound rather than a pinned exact version.

Skill content

requests>=2.28.0

Recommendation

Install in an isolated environment and consider pinning a known-good requests version if reproducibility is important.