Security audit
Mia Executive Permission Policy
Security checks across malware telemetry and agentic risk
Overview
The artifact is a disclosed ClawHub package-manager CLI whose network, file, auth, publish, and moderation-related capabilities match its stated purpose.
Install this as a package-management CLI, not as a passive library. Review commands before running destructive or account-affecting operations such as delete, transfer, publish, trusted-publisher changes, or --force installs; keep the stored ClawHub token protected and use dry-run modes when available.
VirusTotal
64/64 vendors flagged this plugin as clean.
Static analysis
No suspicious patterns detected.
