clawflows
Warn
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
clawflowspackage globally via NPM (npm i -g clawflows). - [REMOTE_CODE_EXECUTION]: The
clawflows installcommand downloads automation configuration files (YAML) from a remote registry atclawflows.com. These files define logic and sequences that are subsequently executed by theclawflows runcommand. - [COMMAND_EXECUTION]: The skill's documentation explicitly describes a system where capabilities are fulfilled by executing local shell scripts (e.g.,
./scripts/my-script.sh). This creates a path for arbitrary command execution based on the content of downloaded automations. - [REMOTE_CODE_EXECUTION]: The execution model relies on 'capabilities' which map abstract tasks to concrete script executions, potentially allowing a malicious automation to trigger unintended local commands if not properly audited by the user.
Audit Metadata