Security Audit

clawback

github.com/openclaw/skills

AI SkillCommit 13146e6a3d46

CRITICAL

Scanned about 2 months ago

Critical

Immediate action required

High

Priority fixes suggested

Medium

Best practices review

Low

Acknowledged / Tracked

Trust Assessment

clawback received a trust score of 10/100, placing it in the Untrusted category. This skill has significant security findings that require attention before use in production.

SkillShield's automated analysis identified 141 findings: 29 critical, 70 high, 41 medium, and 1 low severity. Key findings include Persistence / self-modification instructions, Arbitrary command execution, Unsafe deserialization / dynamic eval.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The Manifest Analysis layer scored lowest at 0/100, indicating areas for improvement.

Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis

Static Code Analysis

Dependency Graph

LLM Behavioral Safety

68%

Behavioral Risk Signals

Network Access

13 findings

Filesystem Write

2 findings

Shell Execution

87 findings

Dynamic Code

60 findings

Excessive Permissions

7 findings

Security Findings141

Severity	Finding	Layer	Location
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/final_setup.sh:266
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/final_setup.sh:268
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:58
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:61
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:66
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:74
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:75
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:76
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:77
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:83
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:86
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup_automated_trading.sh:131
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup_automated_trading.sh:133
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup_automated_trading.sh:137
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup_automated_trading.sh:142
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup_automated_trading.sh:219
CRITICAL	Persistence / self-modification instructions Crontab manipulation (list/remove/edit) Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup_automated_trading.sh:221
CRITICAL	Persistence / self-modification instructions systemd service persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup_integration.sh:133
CRITICAL	Persistence / self-modification instructions systemd service persistence Remove any persistence mechanisms. Skills should not modify system startup configurations, crontabs, LaunchAgents, systemd services, or shell profiles.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:199
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup.py:30
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/setup.py:142
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:32
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:57
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:68
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:87
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:109
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:113
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:130
CRITICAL	Arbitrary command execution Python shell execution (os.system, subprocess) Review all shell execution calls. Ensure commands are static (not built from user input), use absolute paths, and are strictly necessary. Prefer library APIs over shell commands.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:148
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/backtester.py:418
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/cron_manager.py:72
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/cron_manager.py:73
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/cron_manager.py:77
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_data/cron_manager.py:90
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_tracker.py:640
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:2
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:51
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:96
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:103
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:182
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:202
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:218
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:241
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:247
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:261
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:262
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:268
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:273
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:278
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:397
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:398
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:404
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/database.py:408
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:321
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:337
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:346
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:352
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:353
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:364
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:370
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:377
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:390
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:402
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/main.py:3
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/main.py:133
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/main.py:172
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/main.py:177
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/main.py:181
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/main.py:199
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/main.py:368
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/notifications.py:141
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/trade_engine.py:3
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/trade_engine.py:358
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/trade_engine.py:377
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/test_system.py:48
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/tests/test_database.py:34
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/tests/test_database.py:114
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/tests/test_database.py:123
HIGH	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/tests/test_database.py:141
HIGH	Unsafe deserialization / dynamic eval Python builtins/import manipulation Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/test_setup.py:86
HIGH	Dangerous call: subprocess.check_call() Call to 'subprocess.check_call()' detected in function 'install_requirements'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/setup.py:30
HIGH	Dangerous call: subprocess.check_call() Call to 'subprocess.check_call()' detected in function 'setup_environment'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/setup.py:142
HIGH	Dangerous call: subprocess.run() Call to 'subprocess.run()' detected in function 'setup_cron_job'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:32
HIGH	Dangerous call: subprocess.Popen() Call to 'subprocess.Popen()' detected in function 'setup_cron_job'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:57
HIGH	Dangerous call: subprocess.run() Call to 'subprocess.run()' detected in function 'remove_cron_job'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:87
HIGH	Dangerous call: subprocess.run() Call to 'subprocess.run()' detected in function 'show_cron_status'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:130
HIGH	Dangerous call: subprocess.run() Call to 'subprocess.run()' detected in function 'show_cron_status'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:148
HIGH	Dangerous call: subprocess.run() Call to 'subprocess.run()' detected in function 'setup_cron_job'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:68
HIGH	Dangerous call: subprocess.Popen() Call to 'subprocess.Popen()' detected in function 'remove_cron_job'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:109
HIGH	Dangerous call: subprocess.run() Call to 'subprocess.run()' detected in function 'remove_cron_job'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/setup_cron.py:113
HIGH	Dangerous call: __import__() Call to '__import__()' detected in function 'test_python_modules'. This can execute arbitrary code. Avoid using dangerous functions like exec/eval/os.system. Use safer alternatives.	Static	skills/mainfraame/etrade-pelosi-bot/test_setup.py:86
HIGH	Persistence mechanism: Crontab modification Detected Crontab modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration.	Static	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:66
HIGH	Persistence mechanism: Crontab modification Detected Crontab modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration.	Static	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:74
HIGH	Persistence mechanism: Crontab modification Detected Crontab modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration.	Static	skills/mainfraame/etrade-pelosi-bot/scripts/setup_cron.sh:77
HIGH	Persistence mechanism: Crontab modification Detected Crontab modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration.	Static	skills/mainfraame/etrade-pelosi-bot/setup_automated_trading.sh:131
HIGH	Persistence mechanism: Crontab modification Detected Crontab modification pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration.	Static	skills/mainfraame/etrade-pelosi-bot/setup_automated_trading.sh:137
HIGH	Persistence mechanism: systemd service Detected systemd service pattern. Persistence mechanisms allow malware to survive system restarts. Review this persistence pattern. Skills should not modify system startup configuration.	Static	skills/mainfraame/etrade-pelosi-bot/setup_integration.sh:133
HIGH	Credential Mismanagement: Secrets Stored in Non-Secret Config Files The `final_setup.sh` and `setup_automated_trading.sh` scripts directly embed user-provided Telegram bot tokens and chat IDs into `config/config.json`. Similarly, `src/congress_data/config.py` defines a configuration structure (`config/congress_config.json`) that can store Telegram and SMTP credentials. While the `SKILL.md` and `src/config_loader.py` correctly recommend using `config/secrets.json` or environment variables for sensitive data, these setup scripts bypass this secure practice. Storing live credentials in `config.json` or `congress_config.json` significantly increases the risk of accidental exposure, for example, if these files are inadvertently committed to a public version control repository. Ensure all sensitive credentials (API keys, tokens, secrets) are consistently stored in `config/secrets.json` (which should be git-ignored) or environment variables, and never directly embedded into `config/config.json` or `config/congress_config.json`. Update setup scripts to prompt for these values and write them to `config/secrets.json` or instruct the user to set them as environment variables, rather than directly into `config.json`.	LLM	final_setup.sh:69
HIGH	Supply Chain Risk: Reliance on Untrusted Community Data Sources The `src/congress_data/data_collector.py` module, responsible for fetching congressional trade data, relies on community-maintained datasets hosted on GitHub (e.g., `https://raw.githubusercontent.com/timothycarambat/senate-stock-watcher-data/main/data/all_transactions.json` and `https://raw.githubusercontent.com/timothycarambat/congress-trading/main/data/all_transactions.csv`). These external sources are untrusted and could be compromised. If a malicious actor gains control of these repositories, they could inject false or misleading trade data, leading the bot to execute incorrect or financially damaging trades. Prioritize scraping data directly from official government sources as much as possible. If community data must be used, implement robust validation and cross-referencing mechanisms with official sources. Consider mirroring or caching the data with integrity checks (e.g., hash verification) to detect tampering. Clearly document the risks associated with relying on third-party data.	LLM	src/congress_data/data_collector.py:100
MEDIUM	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/add_trade.py:2
MEDIUM	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/add_trade.py:18
MEDIUM	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_tracker.py:123
MEDIUM	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/congress_tracker.py:625
MEDIUM	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/src/integration.py:101
MEDIUM	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/tests/test_congress_tracker.py:162
MEDIUM	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/tests/test_congress_tracker.py:246
MEDIUM	Unsafe deserialization / dynamic eval Decryption followed by code execution Remove obfuscated code execution patterns. Legitimate code does not need base64-encoded payloads executed via eval, encrypted-then-executed blobs, or dynamic attribute resolution to call system functions.	Manifest	skills/mainfraame/etrade-pelosi-bot/tests/test_database.py:262
MEDIUM	Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration.	Static	skills/mainfraame/etrade-pelosi-bot/src/backtester.py:7
MEDIUM	Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/alert_manager.py:11
MEDIUM	Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_data/data_collector.py:10
MEDIUM	Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration.	Static	skills/mainfraame/etrade-pelosi-bot/src/congress_tracker.py:9
MEDIUM	Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration.	Static	skills/mainfraame/etrade-pelosi-bot/src/etrade_adapter.py:9
MEDIUM	Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration.	Static	skills/mainfraame/etrade-pelosi-bot/src/notifications.py:7
MEDIUM	Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration.	Static	skills/mainfraame/etrade-pelosi-bot/src/telegram_notifier.py:8
MEDIUM	Unpinned Python dependency version Requirement 'requests>=2.28.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:5
MEDIUM	Unpinned Python dependency version Requirement 'requests-oauthlib>=1.3.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:6
MEDIUM	Unpinned Python dependency version Requirement 'pdfplumber>=0.9.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:9
MEDIUM	Unpinned Python dependency version Requirement 'beautifulsoup4>=4.11.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:12
MEDIUM	Unpinned Python dependency version Requirement 'selenium>=4.10.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:13
MEDIUM	Unpinned Python dependency version Requirement 'webdriver-manager>=4.0.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:14
MEDIUM	Unpinned Python dependency version Requirement 'pandas>=1.5.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:17
MEDIUM	Unpinned Python dependency version Requirement 'yfinance>=0.2.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:18
MEDIUM	Unpinned Python dependency version Requirement 'schedule>=1.2.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:21
MEDIUM	Unpinned Python dependency version Requirement 'lxml>=4.9.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:24
MEDIUM	Unpinned Python dependency version Requirement 'pytest>=7.0.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:27
MEDIUM	Unpinned Python dependency version Requirement 'pytest-cov>=4.0.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/requirements.txt:28
MEDIUM	Unpinned Python dependency version Requirement 'requests>=2.31.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:1
MEDIUM	Unpinned Python dependency version Requirement 'requests-oauthlib>=1.3.1' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:2
MEDIUM	Unpinned Python dependency version Requirement 'python-dotenv>=1.0.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:3
MEDIUM	Unpinned Python dependency version Requirement 'pandas>=2.0.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:4
MEDIUM	Unpinned Python dependency version Requirement 'numpy>=1.24.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:5
MEDIUM	Unpinned Python dependency version Requirement 'schedule>=1.2.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:6
MEDIUM	Unpinned Python dependency version Requirement 'python-dateutil>=2.8.2' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:7
MEDIUM	Unpinned Python dependency version Requirement 'beautifulsoup4>=4.12.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:8
MEDIUM	Unpinned Python dependency version Requirement 'lxml>=4.9.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:9
MEDIUM	Unpinned Python dependency version Requirement 'pyyaml>=6.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:10
MEDIUM	Unpinned Python dependency version Requirement 'colorlog>=6.7.0' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:11
MEDIUM	Unpinned Python dependency version Requirement 'schedule>=1.2.0 # For cron-like scheduling' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:14
MEDIUM	Unpinned Python dependency version Requirement 'pytz>=2023.3 # Timezone support' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:15
MEDIUM	Unpinned Python dependency version Requirement 'tzlocal>=5.0.1 # Local timezone detection' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'.	Dependencies	skills/mainfraame/etrade-pelosi-bot/src/requirements.txt:16
LOW	Hidden Instructions: PDF Parsing from External Sources The `src/congress_tracker.py` module uses `pdfplumber` to parse PDF documents fetched from `disclosures-clerk.house.gov`. While `pdfplumber` is a legitimate library, parsing complex and potentially untrusted file formats like PDFs from external sources can introduce vulnerabilities. A sophisticated attacker could craft a malicious PDF designed to exploit a parsing vulnerability, potentially leading to unexpected behavior or, in extreme cases, code execution within the skill's environment. This is a general risk inherent in parsing complex external data, rather than a specific, easily exploitable flaw in the provided code. Ensure `pdfplumber` and its dependencies are kept up-to-date to mitigate known vulnerabilities. Consider running PDF parsing in a sandboxed environment if the risk profile is high, or implementing additional input validation and sanitization on extracted data before further processing.	LLM	src/congress_tracker.py:109

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/bb7a9be49b06cf90.svg)](https://skillshield.io/report/bb7a9be49b06cf90)