ClawHub
Back to skill

Security audit

FastAPI Backend

Security checks across malware telemetry and agentic risk

Overview

This is a FastAPI guidance skill with no executable installer or hidden behavior, though its trigger wording is broad and the content is mainly Chinese.

Install this if you want Chinese-language FastAPI backend best-practice guidance. Review any generated authentication, database, migration, and deployment code before production, replace placeholder credentials with real environment-managed secrets, and be aware the skill may trigger on broad backend-related phrasing.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

High
Confidence
98% confidence
Finding
The skill’s trigger instructions are excessively broad and explicitly fire on vague phrases like '写个接口', '做个后端', and '连数据库'. In an agent setting, this can cause the skill to activate for many loosely related requests, expanding its influence beyond user intent and increasing the chance that risky backend, database, or auth guidance is injected into unrelated tasks.

Natural-Language Policy Violations

Medium
Confidence
89% confidence
Finding
The skill description and content are written to default to Chinese without any indication that the user's language preference should be respected. In agent workflows, forcing a language can degrade transparency, cause misunderstanding of security-relevant instructions, and make review or user consent harder when the surrounding session is in another language.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.exposed_secret_literal

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
SKILL.md:244