jarvis-mission-control
Facilitates coordination of AI agents and humans with a Kanban board, real-time chat, and task management in a self-hosted environment.
Install this skill
or
62/100
Security score
The jarvis-mission-control skill was audited on Mar 7, 2026 and we found 10 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 3
Webhook reference - potential data exfiltration
SourceSKILL.md
| 3 | description: "Set up JARVIS Mission Control v2.0.4 — a free, open-source AI agent coordination hub. Kanban board, real-time WebSocket updates, team chat, scheduled job visibility, agent SOUL editor, C |
medium line 83
Webhook reference - potential data exfiltration
SourceSKILL.md
| 83 | - **SQLite webhook delivery** (`better-sqlite3`, WAL mode) — persists across restarts |
medium line 95
Webhook reference - potential data exfiltration
SourceSKILL.md
| 95 | - SSRF protection via `validateWebhookUrl()` — blocks private IPs, localhost, cloud metadata |
low line 131
Webhook reference - potential data exfiltration
SourceSKILL.md
| 131 | └── webhook-deliveries.db # SQLite (gitignored) |
medium line 147
Webhook reference - potential data exfiltration
SourceSKILL.md
| 147 | | 1.15.0 | Header aggregate metrics (Claude / CLI / GitHub / Webhooks) | |
medium line 148
Webhook reference - potential data exfiltration
SourceSKILL.md
| 148 | | 1.14.0 | SQLite webhook delivery engine with circuit breaker | |
medium line 14
Access to hidden dotfiles in home directory
SourceSKILL.md
| 14 | { "name": "OPENCLAW_CRON_FILE", "description": "Path to OpenClaw cron jobs JSON (default: ~/.openclaw/cron/jobs.json — auto-detected)" } |
medium line 76
Access to hidden dotfiles in home directory
SourceSKILL.md
| 76 | - **Claude Code Sessions** — auto-discovers `~/.claude/projects/` JSONL sessions every 60s; shows tokens, cost, model, git branch |
low line 28
External URL reference
SourceSKILL.md
| 28 | **Live Demo:** [missiondeck.ai/mission-control/demo](https://missiondeck.ai/mission-control/demo) _(no account required)_ |
low line 46
External URL reference
SourceSKILL.md
| 46 | open http://localhost:3000 |
Scanned on Mar 7, 2026
View Security DashboardGitHub Stars 2.2K
Rate this skill
Categoryproject management
UpdatedApril 4, 2026
openclawbackendproject-managerdevops-sretechnical-pmgrowth-pmbusiness-process-analystgithubsqliteproject managementdevelopmentproductoperations
openclaw/skills