neubird-ops-agent Security Report — Trusted | ClawSafe

5 /100

neubird-ops-agent

Production ops agent using NeuBird CLI for infrastructure health, cloud costs, incidents, performance, and risk analysis

Legitimate production operations skill that wraps the neubird CLI for infrastructure monitoring. No malicious behavior detected — all operations are declared, documented, and scoped to a known external binary.

Skill Nameneubird-ops-agent

Duration39.4s

Enginepi

✓

Safe to install

This skill is safe to use. Ensure the neubird CLI binary is installed from the official source (neubird.ai) before deployment, as the skill cannot function without it.

Findings 2 items

Severity	Finding	Location
Low	External dependency on neubird CLI The skill relies entirely on the 'neubird' CLI binary which must be pre-installed. While this is a legitimate design pattern, it means security depends on the neubird binary's implementation, which is external to this skill. `Requires the neubird CLI to be installed and authenticated` → Verify the neubird CLI is installed from the official source (neubird.ai) and is kept up-to-date with security patches	`SKILL.md:1`
Low	Allowed-tools not explicitly declared SKILL.md does not explicitly declare which allowed-tools the skill uses. While the skill metadata hints at shell access (bins: ['neubird']), this is not formally declared in the metadata frontmatter. `metadata: {'neubird': {'emoji': '🔍'}, 'openclaw': {'emoji': '🔍', 'requires': {'bins': ['neubird']}}}` → Add explicit allowed-tools declaration to SKILL.md metadata for transparency	`SKILL.md:1`

Resource	Declared	Inferred	Status	Evidence
Shell	`WRITE`	`WRITE`	✓ Aligned	SKILL.md: Shell commands limited to neubird CLI invocations only (neubird run, n…
Filesystem	`WRITE`	`WRITE`	✓ Aligned	SKILL.md: Only writes to /tmp/ for session files (session management)
Network	`NONE`	`NONE`	—	No direct network calls; all network activity goes through the neubird CLI binar…
Environment	`NONE`	`NONE`	—	No environment variable access or credential harvesting observed
Database	`NONE`	`NONE`	—	Database access handled by neubird CLI (user's infrastructure); not accessed dir…
Clipboard	`NONE`	`NONE`	—	No clipboard access observed
Browser	`NONE`	`NONE`	—	No browser access observed
Skill Invoke	`NONE`	`NONE`	—	No cross-skill invocation observed

2 findings

🔗

Medium External URL 外部 URL

https://neubird.ai

SKILL.md:5

🔗

Medium External URL 外部 URL

https://neubird.com

SKILL.md:11

File Tree

6 files · 14.4 KB · 370 lines

Markdown 6f · 370L

├─ ▾ 📁 references

│ ├─ 📝 application.md Markdown 40L · 1.7 KB

│ ├─ 📝 cloud.md Markdown 29L · 1.3 KB

│ ├─ 📝 database.md Markdown 39L · 1.6 KB

│ ├─ 📝 escalation.md Markdown 83L · 2.0 KB

│ └─ 📝 kubernetes.md Markdown 31L · 1.3 KB

└─ 📝 SKILL.md Markdown 148L · 6.5 KB

Dependencies 1 items

Package	Version	Source	Known Vulns	Notes
`neubird`	`unknown`	external CLI	No	External binary not included in skill; must be installed separately from neubird.ai

Security Positives

✓ All operations are documented and declared in SKILL.md

✓ No obfuscation or encoding patterns detected (no base64, eval, atob)

✓ No credential harvesting or sensitive path access

✓ Session files are isolated to /tmp/ which is standard and safe

✓ No direct network calls — all external communication goes through the neubird CLI binary

✓ Reference documentation contains only legitimate operational guidance (incident templates, investigation prompts)

✓ Clean exit code handling with clear error messages

✓ No remote script execution patterns (curl|bash, wget|sh)

✓ No hidden instructions in HTML comments or binary blobs

✓ Skill follows a well-documented CLI wrapper pattern

Scan Report

Findings 2 items

File Tree

Dependencies 1 items

Security Positives