toggle

clawhub:toggle

View source

85/100

First Seen

Feb 19, 2026

Last Scanned

Feb 22, 2026

Findings

Score

85/100

HIGH 1

LOW 1

Findings (2)

HIGH

Secrecy instruction PROMPT_INJECTION_008

prompt-injection L431

Detects instructions to hide actions from the user

Never tell the user

FIX

Remove directives that attempt to change the agent's output format, suppress safety warnings, or alter response structure in ways that bypass safety controls.

FP?

Likely FP if the output format directive is a legitimate tool configuration (e.g., return results as JSON) that does not suppress safety features.

LOW

Runtime URL controlling behavior THIRDPARTY_001

third-party-content L189

Detects URLs fetched at runtime that control or influence agent behavior without pinning

Get a new one at https:// + config

FIX

Avoid loading configuration or behavior-controlling content from runtime URLs. Bundle required configurations locally or pin remote config to versioned, integrity-verified endpoints.

FP?

Likely FP if the URL in the match is a documentation link or example URL (e.g., example.com) rather than an actual runtime-fetched configuration endpoint.