Codai
PassAudited by ClawScan on May 10, 2026.
Overview
Codai is a coherent instruction-only router for a local Docker/Git development environment, but it can run impactful local scripts and uses a documented default MySQL root password.
Install only if you recognize and trust the codai-dev local environment. Before use, review the local run.sh plugin scripts, be careful with remove/flush/database-dump actions, and change the default MySQL password if the environment may contain sensitive data.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken or misdirected command could remove local development data or change running containers.
The skill documents local shell workflows that can delete containers, databases, Git worktrees, and environment files. This is purpose-aligned and explicitly requires confirmation, but it is still impactful local mutation.
Confirm: "Remover worktree '<name>'? Isso apaga os containers, banco de dados, git worktree (branch `worktree/<name>`) e o env file."
Approve only commands for the intended codai-dev project, keep the removal confirmation step, and back up important local data before destructive operations.
The safety of actual execution depends on the local codai-dev-base scripts present on the user's machine.
The reviewed skill is instruction-only and delegates real behavior to local scripts outside the artifact set, so those scripts' contents and provenance are not verified here.
codai-dev-base/ ... run.sh # worktree-manager entry point ... mysql/run.sh # mysql-manager ... nginx-proxy/run.sh # proxy-manager
Review or trust the local codai-dev-base repository and plugin scripts before letting the agent execute them.
If reused with sensitive or non-local data, the default database password could expose the local database to unintended access.
The skill documents a default MySQL root password used by the local database management plugins. It is disclosed and local-purpose-aligned, but it is still privileged database access.
`MYSQL_ROOT_PASS` | `secret` | mysql-manager, worktree-manager
Use this only for local development or change the default MySQL root password when handling sensitive data.