扫描报告
5 /100
tonic-vm-check
Instant VM health checks for Docker-based Linux servers — CPU, memory, disk, containers, DB sizes, and Docker disk usage reporting.
A straightforward Docker VM health-check tool that SSHes into configured hosts and reports system metrics; all capabilities are fully declared and the script contains no obfuscation or hidden behavior.
可以安装
No action required. The skill is a clean, well-scoped monitoring tool.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | READ | READ | ✓ 一致 | SSH key path resolution (id_rsa default) |
| 网络访问 | READ | READ | ✓ 一致 | SSH to VM_HOST via declared env var |
| 命令执行 | WRITE | WRITE | ✓ 一致 | Remote command execution over SSH for diagnostics |
| 环境变量 | READ | READ | ✓ 一致 | VM_HOST, VM_USER, SSH_KEY env var reads |
| 技能调用 | NONE | NONE | — | No cross-skill invocations |
| 剪贴板 | NONE | NONE | — | Not used |
| 浏览器 | NONE | NONE | — | Not used |
| 数据库 | NONE | NONE | — | DB query via docker exec within the remote VM (read-only sizes) |
目录结构
2 文件 · 6.0 KB · 185 行 Shell 1f · 100L
Markdown 1f · 85L
├─
▾
scripts
│ └─
vm-check.sh
Shell
└─
SKILL.md
Markdown
安全亮点
✓ SKILL.md fully documents all sections, environment variables, thresholds, and safety rules
✓ No obfuscation, base64, or eval — plain shell script
✓ Cleanup operations are gated behind the 'cleanup' section flag and include user warnings
✓ No external network calls to third-party services (only SSH to user-specified VM)
✓ MySQL/Postgres queries are read-only (SELECT only) and handle auth failures gracefully
✓ No credential exfiltration — SSH key is used locally to authenticate, not harvested
✓ No supply chain dependencies — pure POSIX shell