ClawHub

Agent Ai Ml Ops Specialist

PassAudited by ClawScan on May 1, 2026.

Overview

This is a coherent instruction-only MLOps advisor, with review-worthy notes about its imported provenance, local reference file, and example operational commands.

This skill appears safe as an instruction-only MLOps advisor. Before installing, confirm you trust the imported source, review any referenced local file under ~/.claude/skills, and do not run the example MLflow, Feast, or BentoML commands against production systems without checking scope and network exposure.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Info
#ASI04: Agentic Supply Chain Vulnerabilities
What this means

Users cannot verify the original source from the provided metadata, although there is no artifact evidence of malicious behavior.

Why it was flagged

The skill is imported and has unknown provenance, but it is instruction-only with no install mechanism or bundled executable code.

Skill content
Source: unknown
Recommendation

Install only if you trust the publisher or have reviewed the imported instructions and any referenced local source material.

Low
#ASI06: Memory and Context Poisoning
What this means

If that local file is stale, untrusted, or modified, it could influence the agent's MLOps recommendations.

Why it was flagged

The skill tells the agent to read and rely on a separate local skill file that is not included in the reviewed artifacts.

Skill content
**Skill Reference**: `~/.claude/skills/ai-ml-ops/SKILL.md` ... 1. **Read skill file** ... 4. **Apply patterns** from skill file
Recommendation

Review the referenced local skill file before use and ensure the agent treats it as supporting context rather than overriding user instructions.

Low
#ASI02: Tool Misuse and Exploitation
What this means

Running these examples in a real environment could expose a local UI, modify feature-store state, or start a model service.

Why it was flagged

The quick reference includes operational commands that can start services or apply feature-store changes, which is appropriate for MLOps but should be user-controlled.

Skill content
mlflow ui --host 0.0.0.0 --port 5000 ... feast apply && feast materialize-incremental ... bentoml serve service:svc --reload
Recommendation

Review and adapt commands before running them, prefer scoped/local bindings where possible, and confirm the target environment is safe.