Process Flow Navigator
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill is mostly a simple workflow navigator, but its CLI helper can execute unintended Python code if given a specially crafted node name.
The skill’s documented workflow-navigation behavior is coherent and local-only, but avoid using the included `scripts/navigate.sh code` command with untrusted or free-form node names until the input handling is fixed.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the assistant or user runs the CLI with a maliciously crafted node value, it could execute local code rather than only looking up a workflow node.
The user-provided node value is interpolated directly into Python source code. A node name containing quote characters and Python statements could break out of the string literal and run unintended local Python code when the `code` command is used.
local node=$1 ... python3 -c " ... node = '$node' ... "
Change the script to pass the node as a Python argument, for example via `sys.argv`, and validate it against expected node names such as `A`, `B-1`, or `C-4` instead of embedding it into `python3 -c` source text.