clawdex

clawhub:clawdex

View source

85/100

First Seen

Feb 18, 2026

Last Scanned

Feb 22, 2026

Findings

Score

85/100

HIGH 1

LOW 1

Findings (2)

HIGH

Data transmission pattern EXFIL_003

exfiltration L62

Detects patterns indicating sensitive data being sent to external services

Exfiltrate data

FIX

Restrict file reading to the project directory and block outbound network calls that include file contents. Implement file path validation to prevent directory traversal.

FP?

Likely FP if the tool legitimately reads project files and displays them to the user locally, without sending data to external services.

LOW

External API response used without validation THIRDPARTY_004

third-party-content L33

Detects patterns where external API responses are used directly without validation or sanitization

API Response + without use

FIX

Validate and sanitize all data received from external APIs before using it in tool operations or agent prompts. Implement schema validation and treat API responses as untrusted input.

FP?

Likely FP if the match is a truncated table cell or documentation fragment that mentions API responses in a descriptive context, not actual unvalidated data processing.