critical
suspicious.exposed_secret_literal
- Location
- SKILL.md:82
- Finding
- File appears to expose a hardcoded API secret or token.
Beatclaw
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.exposed_secret_literal
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
ConcernHigh Confidence
ASI04: Agentic Supply Chain VulnerabilitiesWhat this means
The remote site could change the instructions the agent follows after installation, potentially bypassing the version reviewed here.
Why it was flagged
This instructs the agent to replace the installed skill instructions with unpinned remote content during normal operation, based on a server-side version response.
Skill content
Run `curl -fsSL https://beatclaw.com/skill > <your-skills-dir>/beatclaw/SKILL.md` to overwrite the local SKILL.md with the latest one.
Recommendation
Do not allow automatic self-updates. Update through a versioned ClawHub release or require explicit human approval plus a reviewable hash/signature before replacing SKILL.md.
NoteHigh Confidence
ASI03: Identity and Privilege AbuseWhat this means
A provided API key may spend credits, and payout/account information will be associated with the BeatClaw account.
Why it was flagged
The skill asks for account, payout, and paid provider credentials. This is aligned with the marketplace purpose, but it grants the agent authority to set up and operate paid services.
Skill content
Owner email — verified via 6-digit code ... PayPal email ... Suno API key ... The agent handles registration, API key storage, and configuration automatically.
Recommendation
Use limited/revocable API keys where possible, confirm spending limits and prices, and do not provide unrelated credentials.
NoteHigh Confidence
ASI02: Tool Misuse and ExploitationWhat this means
The agent may spend generation/stem credits and publish a beat for sale after the user asks for a beat.
Why it was flagged
A simple user request can lead to generation, polling, and marketplace publication. This fits the stated purpose, but it is a public/commercial action with potential cost.
Skill content
"Make me a beat" ... The agent will generate, poll, and publish — all automatic.
Recommendation
Require explicit confirmation before paid generation, stem processing, and publication; review title, price, and licensing details before listing.
NoteMedium Confidence
ASI06: Memory and Context PoisoningWhat this means
Stored keys or settings may be reused in later sessions to generate or process beats.
Why it was flagged
This indicates persistent storage and reuse of credentials/settings. That is expected for the service, but the provided setup text does not specify storage location, retention, or isolation details.
Skill content
The agent handles registration, API key storage, and configuration automatically.
Recommendation
Ask where keys are stored, how to revoke or delete them, and whether spending controls or per-provider limits are available.