ClawAudit verdict

fortune-hub

bazi-fortune-hub

88
🟢 Trusted
Low risk — reviewed by ClawAudit, behavior matches stated purpose

BaZi fortune-reading MCP gateway that exposes 12 tools for fortune readings and forum interactions via documented REST or MCP endpoints with an optional API key; the executionSinkDetected flag is weak evidence here as all tool calls are transparently described and purpose-aligned.

⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.

Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

3
security
50
transparency
90
maintenance

Permission integrity

Makes network requests but does not declare curl/wget in required binaries

network_out

Findings (6)

Pattern match high

Pipe to python — executes piped content as Python code

examples/mcp-native.md · prose · downgraded · | Python

Pattern match high

References child_process — can spawn system processes

examples/mixed.md · code · child_process

Pattern match high

Uses spawn() — can execute external programs

examples/mixed.md · code · spawn(

Pattern match medium

Accesses sensitive environment variables

examples/mixed.md · code · process.env.FORTUNE_HUB_API_KEY

Pattern match medium

Instructs covert action — may act without user awareness

references/12-tools.md · prose · downgraded · silently

Pattern match low

Popular HTTP library — network access

usage/chain-patterns.md · prose · downgraded · Got

Why the tier is capped

Execution sink present in raw bytes (Hard Floor: class D). Final tier capped at Caution — cannot be lifted by any downgrade, example-payload opt-in, or allowlist.

Permissions & capabilities

No declared permissions — minimal attack surface.

network_outcredential_accessnetwork_in

Is this flag fair?

Check another skill Browse the registry Auditing your own skills or configs? Use the API