Zotero Literature Review Skill Security Report — Trusted | ClawSafe

0 /100

Zotero Literature Review Skill

深度集成 Zotero 的学术文献综述撰写技能，通过完整的文献库检索、PDF验证、内容提取流程生成学术文献综述

Pure documentation skill containing only Markdown files with no executable code, scripts, or malicious behavior. The code snippets are pseudocode examples, not actual implementations.

Skill NameZotero Literature Review Skill

Duration27.4s

Enginepi

✓

Safe to install

No action required. This is a benign literature review skill with properly declared functionality.

Resource	Declared	Inferred	Status	Evidence
Filesystem	`READ`	`READ`	✓ Aligned	SKILL.md line 195: Reads Zotero PDF storage
Network	`READ`	`READ`	✓ Aligned	SKILL.md line 40: Zotero API verification
Shell	`NONE`	`NONE`	—	No shell commands in documentation
Environment	`NONE`	`NONE`	—	No environment variable access documented
Skill Invoke	`NONE`	`NONE`	—	References other skills for integration only
Clipboard	`NONE`	`NONE`	—	No clipboard access documented
Browser	`NONE`	`NONE`	—	No browser automation documented
Database	`NONE`	`NONE`	—	No database access documented

File Tree

3 files · 47.2 KB · 1802 lines

Markdown 3f · 1802L

├─ 📝 README.md Markdown 247L · 5.8 KB

├─ 📝 SKILL.md Markdown 1251L · 33.7 KB

└─ 📝 应用示例.md Markdown 304L · 7.7 KB

Security Positives

✓ All capabilities properly declared in SKILL.md

✓ No executable code present - only pseudocode examples

✓ No credential harvesting or sensitive data access

✓ No network requests to suspicious endpoints

✓ No obfuscation techniques detected

✓ No supply chain risks (no dependencies in this documentation-only skill)

✓ Clean pre-scan results with no IOCs

✓ Referenced external libraries (PyPDF2, file-classification-manager) are standard academic tools

✓ Zotero API access is declared and appropriate for literature review functionality

Scan Report

File Tree

Security Positives