Skip to main content

alerts

Manages VSS alerts by monitoring and customizing real-time or verification workflows for incident detection and camera integration.

Install this skill

or
59/100

Security score

The alerts skill was audited on May 16, 2026 and we found 13 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 30

Template literal with variable interpolation in command context

SourceSKILL.md
30```bash
medium line 32

Curl to non-GitHub URL

SourceSKILL.md
32curl -sf --max-time 5 "http://${HOST_IP}:8000/docs" >/dev/null \
medium line 143

Curl to non-GitHub URL

SourceSKILL.md
143curl -s "http://<VST_ENDPOINT>/vst/api/v1/sensor/<sensorId>/status" | jq .
medium line 159

Curl to non-GitHub URL

SourceSKILL.md
159curl -s "http://<VST_ENDPOINT>/vst/api/v1/sensor/<sensorId>/streams" | jq .
medium line 174

Curl to non-GitHub URL

SourceSKILL.md
174curl -s -X POST "http://<VST_ENDPOINT>/vst/api/v1/sensor/add" \
medium line 56

Access to .env file

SourceSKILL.md
56| Mode | Deploy flag | Env (`.env`) | What runs | How alerts are created |
medium line 79

Access to .env file

SourceSKILL.md
79Alternative signal (if `docker ps` isn't available in the current context): check the profile's `.env`:
low line 82

Access to .env file

SourceSKILL.md
82grep -E '^MODE=' deployments/developer-workflow/dev-profile-alerts/.env
low line 32

External URL reference

SourceSKILL.md
32curl -sf --max-time 5 "http://${HOST_IP}:8000/docs" >/dev/null \
low line 120

External URL reference

SourceSKILL.md
120AGENT="http://<AGENT_ENDPOINT>" # default http://localhost:8000 on the alerts profile
low line 143

External URL reference

SourceSKILL.md
143curl -s "http://<VST_ENDPOINT>/vst/api/v1/sensor/<sensorId>/status" | jq .
low line 159

External URL reference

SourceSKILL.md
159curl -s "http://<VST_ENDPOINT>/vst/api/v1/sensor/<sensorId>/streams" | jq .
low line 174

External URL reference

SourceSKILL.md
174curl -s -X POST "http://<VST_ENDPOINT>/vst/api/v1/sensor/add" \
Scanned on May 16, 2026
View Security Dashboard
Installation guide →
GitHub Stars 1.3K
Rate this skill
Categorydevelopment
UpdatedMay 20, 2026
openclawbackendml-ai-engineerdata-engineerbackend-developerdockergithubdevelopment
NVIDIA-AI-Blueprints/video-search-and-summarization