ClawAudit verdict

kubeblocks

kubeblocks-skills

88
🟢 Trusted
Low risk — reviewed by ClawAudit, behavior matches stated purpose

A Kubernetes database management skill using kubectl/helm to provision and manage KubeBlocks-managed databases; straightforward infrastructure tooling with documented operations.

⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.

Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

0
security
100
transparency
90
maintenance

Findings (6)

Pattern match critical

Pipe-to-shell pattern (curl | sh) — supply chain attack vector

skills/kubeblocks-create-local-k8s-cluster/SKILL.md · code · curl -s https://raw.githubusercontent.com/k3d-io/k3d/main/install.sh | bash

Pattern match critical

Pipe to bash — executes piped content as shell commands

skills/kubeblocks-create-local-k8s-cluster/SKILL.md · code · | bash

Pattern match critical

Possible hardcoded credential

skills/kubeblocks-manage-accounts/SKILL.md · code · password: "MySecureP@ssw0rd!

Pattern match high

References sudo — requests elevated privileges

skills/kubeblocks-create-local-k8s-cluster/SKILL.md · code · sudo

Pattern match medium

Base64 encoding/decoding

skills/kubeblocks-configure-tls/SKILL.md · code · base64-encode

Pattern match medium

Accesses Kubernetes config (may contain cluster credentials)

skills/kubeblocks-install/SKILL.md · prose · downgraded · ~/.kube/config

Why the tier is capped

Execution sink present in raw bytes (Hard Floor: class A/B). Final tier capped at Caution — cannot be lifted by any downgrade, example-payload opt-in, or allowlist.

Permissions & capabilities

No declared permissions — minimal attack surface.

Is this flag fair?

Check another skill Browse the registry Auditing your own skills or configs? Use the API