中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 5/100
Last scan:18 hr ago Rescan
5 /100
everything-cli
Fast indexed local file and path search on Windows using voidtools Everything.
The Everything CLI skill is a legitimate Windows file-search wrapper around voidtools es.exe with no malicious behavior detected.
Skill Nameeverything-cli
Duration42.7s
Enginepi
Safe to install
No action needed. The skill is safe to use.
ResourceDeclaredInferredStatusEvidence
Filesystem WRITE WRITE ✓ Aligned scripts/everything-cli.py:95 — writes shims to shim_dir
Shell WRITE WRITE ✓ Aligned scripts/everything-cli.py:37 — subprocess.run spawns PowerShell
Network READ READ ✓ Aligned references/everything-cli.ps1.txt:387 — Invoke-WebRequest downloads es.exe from …
Environment NONE READ ✓ Aligned scripts/everything-cli.py:48 — reads ENV vars for path discovery; winreg PATH wr…
Skill Invoke READ READ ✓ Aligned agents/openai.yaml:allow_implicit_invocation:true
Clipboard NONE NONE
Browser NONE NONE
Database NONE NONE
1 High 2 findings
📡
High IP Address 硬编码 IP 地址
1.1.0.30
references/everything-cli.ps1.txt:47
🔗
Medium External URL 外部 URL
https://www.voidtools.com/$zipName
references/everything-cli.ps1.txt:383

File Tree

5 files · 32.6 KB · 1114 lines
Text 1f · 841L Python 1f · 217L Markdown 1f · 43L YAML 1f · 7L JSON 1f · 6L
├─ 📁 agents
│ └─ 📋 openai.yaml YAML 7L · 262 B
├─ 📁 references
│ └─ 📄 everything-cli.ps1.txt Text 841L · 23.5 KB
├─ 📁 scripts
│ └─ 🐍 everything-cli.py Python 217L · 6.6 KB
├─ 📋 _meta.json JSON 6L · 122 B
└─ 📝 SKILL.md Markdown 43L · 2.1 KB

Security Positives

✓ No obfuscation: no base64, no eval, no encoded strings anywhere in the codebase.
✓ No credential theft: the skill never reads ~/.ssh, ~/.aws, .env, or iterates os.environ for secrets.
✓ No data exfiltration: no outbound connections except the documented voidtools.com download.
✓ No persistence mechanisms: no cron jobs, startup hooks, or backdoors installed.
✓ No reverse shell or C2 communication.
✓ The external download (es.exe zip from www.voidtools.com) is declared in SKILL.md and necessary for the skill's core functionality.
✓ The pre-scan IOC flagging '1.1.0.30' as a hardcoded IP is a false positive — it is the es.exe version number from voidtools, not a network address.
✓ subprocess.run uses explicit argument lists (not shell=True), preventing command injection.
✓ No third-party dependencies; the skill has zero external package requirements.