ClawHub

Mihomo Proxy Management

Security checks across static analysis, malware telemetry, and agentic risk

Overview

This instruction-only skill is coherent for managing a Mihomo proxy, but it uses an admin bearer secret and includes commands that can change or restart the proxy.

This looks reasonable if you want the agent to help administer Mihomo. Before installing or using it, be prepared to provide a Mihomo API secret only for an instance you trust, and require explicit confirmation before actions that close connections, switch proxy groups, flush caches, reload configuration, or restart the service.

Static analysis

No static analysis findings were reported for this release.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal

Risk analysis

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

#ASI02: Tool Misuse and Exploitation
Low
What this means

Using these commands could temporarily disrupt network traffic or change how the user's device routes connections.

Why it was flagged

These examples show purpose-aligned but state-changing proxy administration actions that can close active connections, reload configuration, or restart the proxy service.

Skill content
curl -X DELETE -H "Authorization: Bearer $MIHOMO_SECRET" "$MIHOMO_URL/connections" ... curl -X PUT ... "$MIHOMO_URL/configs?force=true" ... curl -X POST ... "$MIHOMO_URL/restart"
Recommendation

Only run PUT, POST, or DELETE operations after the user explicitly asks for them, especially close-all, reload, restart, upgrade, or provider-update actions.

#ASI03: Identity and Privilege Abuse
Low
What this means

Anyone with this secret may be able to inspect or control the configured Mihomo instance.

Why it was flagged

The skill expects a Mihomo API bearer secret and suggests placing it in a session environment variable, which is normal for this integration but still grants administrative access to the proxy API.

Skill content
Default values, override with user-provided:
- **Host**: `http://127.0.0.1:9090`
- **Secret**: Ask user if not provided

Store connection in environment for session:
```bash
MIHOMO_URL="http://host:9090"
MIHOMO_SECRET="your-secret"
```
Recommendation

Provide the secret only for a trusted instance, avoid exposing it in shared logs or transcripts, and prefer localhost or another explicitly trusted host.