ClawAudit verdict

mystock

🟢 Trusted

Low risk — reviewed by ClawAudit, behavior matches stated purpose

Stock analysis assistant launching a local FastAPI and Vue web UI for market data; network_in receives stock quotes from public APIs, no credential exfiltration.

⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.

Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.

security

transparency

maintenance

Permission integrity

Installs packages at runtime — transitive dependencies are not auditable

package_install

Findings (6)

Pattern match critical

Possible hardcoded credential

backend/AI_CONFIG.md · code · api_key = "your_key_here

Pattern match low

Python os.getenv — reads environment variable

backend/ai_config.py · prose · downgraded · os.getenv(

Pattern match low

Python urllib.request — network access

backend/ai_service.py · prose · downgraded · urllib.request

Pattern match low

Python httpx request — network access

backend/main.py · prose · downgraded · httpx.get(

Pattern match low

POSTs data to external URL

scripts/fetch_roe_data.py · prose · downgraded · .post( "https://

Pattern match low

pip3 install — installs Python packages at runtime

scripts/install.sh · prose · downgraded · pip3 install

Why the tier is capped

Execution sink present in raw bytes (Hard Floor: class B). Final tier capped at Caution — cannot be lifted by any downgrade, example-payload opt-in, or allowlist.

Permissions & capabilities

No declared permissions — minimal attack surface.

network_inpackage_install

Is this flag fair?

Check another skill Browse the registry Auditing your own skills or configs? Use the API