中文 EN

Scan Report

Scan New Files

Suspicious — Risk Score 55/100
Last scan:18 hr ago Rescan
55 /100
问专家技能
使用 Playwriter 连接用户已登录的 Chrome 浏览器,通过 Gemini 等 AI 助手获取专业建议
Skill documentation explicitly mentions bypassing robot detection and operating on authenticated browser sessions, suggesting potential for unauthorized automation and terms-of-service violations.
Skill Name问专家技能
Duration33.4s
Enginepi
Use with caution
This skill should be reviewed with caution. The declared use cases include bypassing anti-bot mechanisms, which could facilitate unauthorized scraping or automation. Request actual implementation code and verify the tool only performs legitimate browser interactions.

Findings 4 items

Severity Finding Location
Medium
Skill name misleads about actual functionality Doc Mismatch
Skill is named '问专家技能' (Ask Expert Skill) but actually automates browser control through Playwriter. The actual behavior (browser automation) is not apparent from the name.
# 问专家技能 - 使用 Playwriter 控制已登录的浏览器
→ Rename skill to accurately reflect browser automation functionality
 SKILL.md:1
High
Bypass robot detection declared as legitimate use case RCE
The skill explicitly lists 'bypass robot detection scenarios' as an applicable use case. This suggests the tool is designed to circumvent anti-bot measures, which could violate terms of service of various platforms.
- 需要绕过机器人检测的场景
→ Remove bypass robot detection use cases. This functionality could facilitate unauthorized automated access to services.
 SKILL.md:58
Medium
Authenticated session manipulation without explicit consent Sensitive Access
The skill operates on a user's already-logged-in Chrome browser. This means it can potentially access any authenticated sessions (email, banking, social media) without explicit per-action user consent.
使用 Playwriter 连接用户已登录的 Chrome 浏览器
→ Implement explicit user consent workflow before each authenticated action.
 SKILL.md:1
Low
No implementation files to audit Supply Chain
Only SKILL.md documentation exists. Actual execution code cannot be reviewed for hidden behavior.
No scripts/ directory found
→ Request full implementation code before production deployment.
 SKILL.md:1
ResourceDeclaredInferredStatusEvidence
Shell WRITE WRITE ✓ Aligned SKILL.md - uses bash, python3 subprocess
Browser READ READ ✓ Aligned SKILL.md - controls Chrome via Playwriter
Filesystem WRITE WRITE ✓ Aligned SKILL.md - screenshot saving

File Tree

1 files · 2.3 KB · 88 lines
Markdown 1f · 88L
└─ 📝 SKILL.md Markdown 88L · 2.3 KB

Security Positives

✓ Uses documented Playwriter tool (open source browser automation framework)
✓ No base64-encoded strings or obfuscated code observed
✓ No credential harvesting or environment variable access detected
✓ No network requests to external IPs documented