中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 5/100
Last scan:1 day ago Rescan
5 /100
aegis-bridge
Orchestrate Claude Code sessions via Aegis HTTP/MCP bridge
A legitimate Claude Code session orchestration tool with no malicious indicators; all capabilities are accurately documented and appropriately scoped to localhost communication.
Skill Nameaegis-bridge
Duration38.1s
Enginepi
Safe to install
Approve for use. This is a well-documented orchestration skill for managing Claude Code sessions via a local HTTP API bridge.
ResourceDeclaredInferredStatusEvidence
Network READ READ ✓ Aligned SKILL.md:12 - curl to http://127.0.0.1:9100
Shell WRITE WRITE ✓ Aligned SKILL.md:42 - POST .../bash endpoint documented
Filesystem WRITE WRITE ✓ Aligned setup-mcp.sh:33 - writes to ~/.claude/settings.json
Environment NONE NONE No os.environ access found
10 findings
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/health
SKILL.md:12
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/sessions
SKILL.md:27
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/sessions/$SID/send
SKILL.md:42
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/sessions/$SID/read
SKILL.md:52
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/sessions/$SID
SKILL.md:87
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100
references/api-quick-ref.md:3
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/sessions/$SID/approve
references/heartbeat-template.md:53
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/sessions/$SID/pane
references/heartbeat-template.md:69
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/sessions/$SID/summary
references/workflow-examples.md:22
🔗
Medium External URL 外部 URL
http://127.0.0.1:9100/v1/pipelines
references/workflow-examples.md:51

File Tree

8 files · 22.3 KB · 747 lines
Markdown 6f · 648L Shell 2f · 99L
├─ 📁 references
│ ├─ 📝 agent-template.md Markdown 106L · 2.9 KB
│ ├─ 📝 api-quick-ref.md Markdown 123L · 4.0 KB
│ ├─ 📝 heartbeat-template.md Markdown 103L · 3.0 KB
│ └─ 📝 workflow-examples.md Markdown 62L · 1.7 KB
├─ 📁 scripts
│ ├─ 🔧 health-check.sh Shell 52L · 1.3 KB
│ └─ 🔧 setup-mcp.sh Shell 47L · 1.3 KB
├─ 📝 README.md Markdown 46L · 846 B
└─ 📝 SKILL.md Markdown 208L · 7.4 KB

Security Positives

✓ All network traffic is localhost-only (127.0.0.1:9100)
✓ No credential harvesting or sensitive file access
✓ No obfuscation techniques (base64, eval, etc.)
✓ Documentation accurately describes all functionality
✓ Shell commands are explicitly declared for session orchestration
✓ Auto-approve pattern targets spawned CC session permissions, not skill escalation
✓ No external package dependencies (no requirements.txt, package.json, etc.)
✓ Simple bash scripts with transparent logic