torrentclaw

clawhub:torrentclaw

View source

100/100

First Seen

Feb 18, 2026

Last Scanned

Feb 22, 2026

Findings

Score

100/100

LOW 3

Findings (3)

LOW

Runtime URL controlling behavior THIRDPARTY_001

third-party-content L105

Detects URLs fetched at runtime that control or influence agent behavior without pinning

Download .torrent file** — `curl -o "filename.torrent" "https:// + instructions

FIX

Avoid loading configuration or behavior-controlling content from runtime URLs. Bundle required configurations locally or pin remote config to versioned, integrity-verified endpoints.

FP?

Likely FP if the URL in the match is a documentation link or example URL (e.g., example.com) rather than an actual runtime-fetched configuration endpoint.

LOW

Unverified npx package execution EXTDL_008

external-download L244

Detects npx executing packages from unverified sources without pinned versions

npx @torrentclaw/mcp

FIX

Pin the npx package to an exact version (e.g., npx @scope/package@1.2.3). Unversioned npx commands can silently install a different or malicious package version.

FP?

Likely FP if the npx command targets a well-known package in documentation context, though unpinned versions are a real supply chain concern.

LOW

Shell script file execution CMDEXEC_013

command-execution L321

Detects execution of shell script files via bash/sh command or direct invocation

bash scripts/install-guide.sh

FIX

Replace direct shell script execution with a language-native implementation or a sandboxed executor. If shell scripts must run, restrict them to a vetted allowlist with integrity checks.

FP?

Likely FP if the match references running a script that is part of the skill's own repository (e.g., ./setup.sh) with clear, auditable contents.