face-analysis 安全扫描报告 — 高风险 | ClawSafe

65 /100

face-analysis

中医面诊分析工具 (TCM Face Analysis Tool) - claims to only perform video-based health analysis

This TCM face-analysis skill contains hardcoded database credentials, undeclared database connectivity, and hidden token management functionality not documented in SKILL.md.

技能名称face-analysis

分析耗时58.5s

引擎pi

⛔

不要安装此技能

Remove all hardcoded credentials from config files, implement proper secret management, and update SKILL.md to accurately declare all database and token management capabilities.

安全发现 5 项

严重性	安全发现	位置
高危	Hardcoded Database Credentials in config.yaml 凭证窃取 The config.yaml file contains plaintext database credentials including username 'admin' and password 'Smyx2025@db' connecting to MySQL at 172.31.16.2:3306. These credentials are committed to the codebase. `database-url: mysql+pymysql://admin:Smyx2025@[email protected]:3306/health-cloud?charset=utf8mb4` → Remove hardcoded credentials; use environment variables or a secrets manager.	`skills/scripts/common/config.yaml:4`
高危	Hardcoded Feishu App Secret 凭证窃取 The Feishu (Lark) application secret 'zYJMyYcB4kIF5uPCwFACBdmvbr3JkK8r' is hardcoded in config.yaml. This secret can be used to authenticate with Feishu APIs. `feishu-app--secret: zYJMyYcB4kIF5uPCwFACBdmvbr3JkK8r` → Remove hardcoded secret; use environment variables for authentication tokens.	`skills/scripts/common/config.yaml:15`
高危	Undeclared Database Connectivity and Token Management 文档欺骗 The skill SKILL.md only documents video face analysis, but the actual code implements full CRUD operations on a 'sys_user' database table that stores user tokens and open_tokens. This functionality is completely hidden from documentation. `class User(Base): __tablename__ = "sys_user" id = Column(String(32), primary_key=True) token = Column(String(500)) open_token = Column(String(1000))` → Update SKILL.md to document all database operations and token management features, or remove this undeclared functionality.	`skills/scripts/common/dao.py:54`
高危	Database Passwords in Test/Dev Configs with Special Characters 供应链 config-test.yaml and config-dev.yaml contain database credentials 'remoteuser:qA{tov-89atz0>opvim&!)[email protected]:3306' which may indicate password complexity but credentials are still hardcoded. `database-url: mysql+pymysql://remoteuser:qA{tov-89atz0>opvim&!)[email protected]:3306/health-cloud` → Move all credentials to environment variables or a secrets manager.	`skills/scripts/common/config-test.yaml:1`
中危	Environment Variable Reading for User Identification 敏感访问 The code reads OPENCLAW_SENDER_OPEN_ID, OPENCLAW_SENDER_USERNAME, and FEISHU_OPEN_ID from environment variables for user identification, which is legitimate but worth noting for audit purposes. `openclaw_sender_open_id = os.environ.get("OPENCLAW_SENDER_OPEN_ID")` → Document what user identification data is collected and how it is used.	`skills/scripts/common/config.py:195`

资源类型	声明权限	推断权限	状态	证据
文件系统	`READ`	`READ`	✓ 一致	scripts/face_analysis.py - file upload via multipart/form-data
网络访问	`READ`	`WRITE`	✗ 越权	skills/scripts/common/dao.py:45 - database WRITE to MySQL server
数据库	`NONE`	`WRITE`	✗ 越权	skills/scripts/common/dao.py:54-180 - Full CRUD operations on sys_user table

2 高危 9 项发现

🔑

高危 API 密钥疑似硬编码凭证

API_KEY = "your-api-key-here"

README.md:11

📡

高危 IP 地址硬编码 IP 地址

172.31.16.2

skills/scripts/common/config.yaml:4

🔗

中危外部 URL 外部 URL

https://your-api-server.com/api/v1/face-analysis

README.md:10

🔗

中危外部 URL 外部 URL

http://livemonitortest.lifeemergence.com/smyx-open-api

skills/scripts/common/config-dev.yaml:4

🔗

中危外部 URL 外部 URL

https://healthtest.lifeemergence.com/jeecg-boot

skills/scripts/common/config-dev.yaml:5

🔗

中危外部 URL 外部 URL

http://192.168.1.234:8080/jeecg-boot

skills/scripts/common/config-dev.yaml:6

🔗

中危外部 URL 外部 URL

https://open.lifeemergence.com/smyx-open-api

skills/scripts/common/config.yaml:5

🔗

中危外部 URL 外部 URL

https://lifeemergence.com/jeecg-boot

skills/scripts/common/config.yaml:6

📧

提示邮箱邮箱地址

[email protected]

skills/scripts/common/config-dev.yaml:3

目录结构

21 文件 · 76.2 KB · 2036 行

Python 12f · 1590L Markdown 3f · 286L Text 1f · 127L YAML 5f · 33L

├─ ▾ 📁 references

│ └─ 📝 api_doc.md Markdown 69L · 1.8 KB

├─ ▾ 📁 scripts

│ ├─ 🐍 __init__.py Python 0 B

│ ├─ 🐍 api_service.py Python 62L · 2.0 KB

│ ├─ 🐍 config.py Python 45L · 1.6 KB

│ ├─ 📋 config.yaml YAML 1L · 4 B

│ ├─ 🐍 face_analysis.py Python 221L · 8.3 KB

│ └─ 🐍 skill.py Python 225L · 9.5 KB

├─ ▾ 📁 skills

│ └─ ▾ 📁 scripts

│ └─ ▾ 📁 common

│ ├─ 🐍 __init__.py Python 8L · 151 B

│ ├─ 🐍 api_service.py Python 98L · 2.7 KB

│ ├─ 🐍 base.py Python 25L · 440 B

│ ├─ 📋 config-dev.yaml YAML 9L · 511 B

│ ├─ 📋 config-prod.yaml YAML 0 B

│ ├─ 📋 config-test.yaml YAML 6L · 323 B

│ ├─ 🐍 config.py Python 185L · 7.9 KB

│ ├─ 📋 config.yaml YAML 17L · 648 B

│ ├─ 🐍 dao.py Python 394L · 14.1 KB

│ └─ 🐍 util.py Python 327L · 14.1 KB

├─ 🐍 __init__.py Python 0 B

├─ 📝 README.md Markdown 86L · 2.5 KB

├─ 📄 requirements.txt Text 127L · 2.3 KB

└─ 📝 SKILL.md Markdown 131L · 7.5 KB

依赖分析 4 项

包名	版本	来源	已知漏洞	备注
`requests`	`2.32.5`	pip	否	Version pinned - good practice
`sqlalchemy`	`2.0.46`	pip	否	Version pinned - good practice
`pymysql`	`1.1.2`	pip	否	Version pinned - good practice
`cryptography`	`3.4.8`	pip	否	Version not latest but stable release

安全亮点

✓ No shell execution (subprocess) detected - skill uses only Python libraries

✓ No base64-encoded payloads or obfuscation techniques observed

✓ No direct IP address network requests to suspicious endpoints

✓ No attempts to access ~/.ssh, ~/.aws, or other sensitive home directory files

✓ No curl|bash or wget|sh remote script execution patterns

✓ Legitimate API-based face analysis functionality as documented