Stashdog

PassAudited by ClawScan on May 10, 2026.

Overview

This appears to be a straightforward StashDog MCP connector, but users should notice that it uses OAuth, talks to a remote server, and can modify or delete inventory items.

Install only if you intend to connect your StashDog account to this remote MCP server. Confirm any add, edit, or delete actions before they run, and consider pinning or otherwise vetting the `mcp-remote` package used through `npx`.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Low

#ASI03: Identity and Privilege Abuse

What this means

You may be granting access to your StashDog inventory account through the OAuth flow.

Why it was flagged

The skill requires delegated OAuth access to use the StashDog MCP server, which is expected for this integration but gives the connected service account-level authority.

Skill content

- **Auth:** OAuth (via `mcp-remote` proxy)

Recommendation

Only authorize the connection if you trust the StashDog server and review/revoke the OAuth grant if you stop using the skill.

Low

#ASI02: Tool Misuse and Exploitation

What this means

If invoked, the agent can add, edit, or delete StashDog inventory items.

Why it was flagged

The exposed MCP tools include mutation and deletion of inventory records. This is purpose-aligned, but users should be aware these actions can change account data.

Skill content

- **Tools:** `list_items`, `search_items`, `get_item`, `add_item`, `edit_item`, `delete_item`

Recommendation

Use explicit confirmation for edits and deletions, and verify item IDs before destructive actions.

Low

#ASI04: Agentic Supply Chain Vulnerabilities

What this means

Your MCP client may run externally sourced package code to connect to the remote server.

Why it was flagged

The recommended MCP setup runs `mcp-remote` through `npx -y`, which may fetch and execute an npm package without pinning a specific version.

Skill content

"command": "npx", "args": ["-y", "mcp-remote", "https://gmchczeyburroiyzefie.supabase.co/functions/v1/mcp-server/mcp"]

Recommendation

Prefer a trusted, pinned version of `mcp-remote` where possible and use a normal package-management review process.

Low

#ASI07: Insecure Inter-Agent Communication

What this means

Inventory data you query or modify may be sent to and processed by the remote StashDog MCP server.

Why it was flagged

The skill sends MCP requests to a disclosed remote HTTPS endpoint. This is central to the skill, but inventory queries and item data will be handled by that service.

Skill content

- **Endpoint:** `https://gmchczeyburroiyzefie.supabase.co/functions/v1/mcp-server/mcp`

Recommendation

Avoid sending sensitive inventory details unless you trust the endpoint and understand the service’s data handling.