Fox Data Analyst
ReviewAudited by ClawScan on May 10, 2026.
Overview
Fox Data Analyst is a coherent data-analysis helper, but its SQL runner can execute unrestricted database commands, which could change live data if given write-capable credentials.
Use this skill only with sanitized datasets or read-only database accounts unless you explicitly want the agent to change data. Do not store passwords in TOOLS.md, review generated SQL before execution, and run the setup script manually after confirming its local file writes are acceptable.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the agent uses a database account with write privileges, a generated or selected query could update, delete, or otherwise change live business data.
The helper sends inline or file-supplied SQL directly to the selected database without limiting it to read-only statements or requiring confirmation for high-impact commands.
QUERY=$(cat "$FILE") ... psql "$DB_CONNECTION" -c "$query" ... mysql $DB_CONNECTION -e "$query"
Use read-only or replica database credentials by default, review SQL before execution, and require explicit human approval for DML/DDL such as UPDATE, DELETE, INSERT, DROP, or ALTER.
Database connection strings can expose sensitive credentials or give the agent access to more data than intended.
The skill expects users to provide database or warehouse connection details, which may include credentials or privileged account access.
Primary DB: [Connection string or description] ... Data warehouse: [BigQuery/Snowflake/etc.]
Avoid pasting passwords into shared project files; prefer environment variables or a secret manager, and use least-privilege accounts scoped to the datasets needed.
Running the setup script will create files under the user's OpenClaw workspace.
The skill instructs the user to run a shell script as a setup step. This is disclosed and purpose-aligned, and the provided script creates local templates and directories.
Set up your workspace: ```bash ./scripts/data-init.sh ```
Run the setup script manually only after reviewing it, and confirm it writes only to the intended workspace path.
It is harder to confirm whether the package identity and publisher history are consistent.
The embedded metadata slug and owner differ from the supplied registry identity for fox-data-analyst, and the source/homepage are unknown. This is a provenance inconsistency, not evidence of malicious runtime behavior.
"ownerId": "kn7cpmgq5bpf1mp69bpd7n9as180nssd", "slug": "data-analyst"
Review the included files before use and prefer packages with consistent publisher metadata and a traceable source repository.