ClawAudit verdict
hwc-cli-guidance-v2
Receives external input AND executes processes
Updated version of the Huawei Cloud KooCLI guidance skill with the same legitimate pattern of official SDK downloads and CLI configuration against the user own Huawei Cloud account.
Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
What it does
These are capability combinations: each listed behavior occurs in the skill, but ClawAudit detects co-occurrence — it does not verify that one flows into another. Read the code to confirm a live chain.
Receives external input AND executes processes — the shape of a command & control channel
LLM05 · LLM06 · ASI10
Enumerates directory contents AND makes external network calls — filesystem reconnaissance
LLM02 · LLM06 · ASI03
Executes processes AND makes external network calls — may exfiltrate command output
LLM02 · LLM06 · ASI03
Installs packages AND executes processes — opaque dependency chain with execution
LLM03 · ASI04
Permission integrity
network_out
package_install
Findings (4)
References sudo — requests elevated privileges
SKILL.md · code · sudo
subprocess execution — runs system commands from Python
SKILL.md · code · subprocess.run(
subprocess with shell=True — command injection vector
SKILL.md · code · subprocess.run(cmd, shell=True
Python directory traversal
SKILL.md · code · os.listdir(
Why the tier is capped
Execution sink present in raw bytes (Hard Floor: class D). Final tier capped at Caution — cannot be lifted by any downgrade, example-payload opt-in, or allowlist.
Permissions & capabilities
No declared permissions — minimal attack surface.
package_installnetwork_outnetwork_inprocess_execdir_traversal Thanks — recorded.