Aguara Watch

calibre-catalog-read

clawhub:calibre-catalog-read

View source
D
43/100

First Seen

Feb 18, 2026

Last Scanned

Feb 22, 2026

Findings

5

Score

43/100

CRITICAL 1
MEDIUM 4

Findings (5)

CRITICAL
Instruction override combined with dangerous operations
L1

Instruction override combined with dangerous operations

If auth is enabled:Preferred: set in /home/altair/.openclaw/.envCALIBRE_USERNAME=<user>CALIBRE_PASSWORD=<password>Then pass only --password-env CALIBRE_PASSWORD (username auto-loads from env)You can s...
FIX

Remove language that attempts to override safety guidelines or bypass system-level controls. This pattern is a strong indicator of a jailbreak attempt.

FP?

Likely FP if the matched text is in a security research document or educational content clearly marked as an example rather than an active payload.

MEDIUM
Internal IP range access
L36

Detects references to private/internal IP ranges in URL context

http://192.168.11.20:
FIX

Implement URL allowlisting for all outbound requests. Block requests to private IP ranges (10.x, 172.16-31.x, 192.168.x), localhost, and link-local addresses.

FP?

Likely FP if the match is a localhost URL used for local development (e.g., http://localhost:3000) in setup documentation.

MEDIUM
Internal IP range access
L45

Detects references to private/internal IP ranges in URL context

http://192.168.11.20:
FIX

Implement URL allowlisting for all outbound requests. Block requests to private IP ranges (10.x, 172.16-31.x, 192.168.x), localhost, and link-local addresses.

FP?

Likely FP if the match is a localhost URL used for local development (e.g., http://localhost:3000) in setup documentation.

MEDIUM
Internal IP range access
L54

Detects references to private/internal IP ranges in URL context

http://192.168.11.20:
FIX

Implement URL allowlisting for all outbound requests. Block requests to private IP ranges (10.x, 172.16-31.x, 192.168.x), localhost, and link-local addresses.

FP?

Likely FP if the match is a localhost URL used for local development (e.g., http://localhost:3000) in setup documentation.

MEDIUM
Internal IP range access
L63

Detects references to private/internal IP ranges in URL context

http://192.168.11.20:
FIX

Implement URL allowlisting for all outbound requests. Block requests to private IP ranges (10.x, 172.16-31.x, 192.168.x), localhost, and link-local addresses.

FP?

Likely FP if the match is a localhost URL used for local development (e.g., http://localhost:3000) in setup documentation.