ClawAudit verdict
beta-knowledge
Simple knowledge base index document describing a directory structure for trading strategies and platform notes; no code, no network calls, and no behavior that could be harmful.
⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.
Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
Findings (7)
Possible hardcoded credential
platforms/coinpay-did-deep.md · code · apiKey: 'cp_live_xxxxx
Pipe-to-shell pattern (curl | sh) — supply chain attack vector
platforms/monetization-landscape.md · code · curl -fsSL https://ugig.net/install.sh | bash
Pipe to bash — executes piped content as shell commands
platforms/monetization-landscape.md · code · | bash
References sudo — requests elevated privileges
research/manus-architecture.md · code · sudo
Pipe to python — executes piped content as Python code
skills/index.md · prose · downgraded · | Python
References webhook/callback URL
platforms/monetization-landscape.md · code · webhook_url
pip3 install — installs Python packages at runtime
research/manus-architecture.md · code · pip3 install
Why the tier is capped
Execution sink present in raw bytes (Hard Floor: class A). Final tier capped at Caution — cannot be lifted by any downgrade, example-payload opt-in, or allowlist.
Permissions & capabilities
No declared permissions — minimal attack surface.
Is this flag fair?
Thanks — recorded.