扫描报告
0 /100
neta-creative
Neta API creative skill — generate images, videos, songs, and MVs, and deconstruct creative ideas from existing works
This is a pure-documentation skill that provides guidance for using a legitimate CLI tool (neta-cli) for creative media generation — no executable code, scripts, or dangerous capabilities are present.
可以安装
No action needed. The skill is safe to use as described.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | NONE | NONE | — | No filesystem access — all files are markdown docs |
| 网络访问 | NONE | NONE | — | No direct network access — only a CLI tool is invoked via shell |
| 命令执行 | NONE | NONE | — | The skill only documents CLI tool usage; no custom shell scripts are executed |
| 环境变量 | NONE | NONE | — | NETA_TOKEN is mentioned as a prerequisite but is only used by the external neta-… |
| 技能调用 | NONE | NONE | — | No skill invocation behavior detected |
| 剪贴板 | NONE | NONE | — | No clipboard access |
| 浏览器 | NONE | NONE | — | No browser access |
| 数据库 | NONE | NONE | — | No database access |
目录结构
7 文件 · 31.4 KB · 1262 行 Markdown 7f · 1262L
├─
▾
references
│ ├─
character-search.md
Markdown
│ ├─
collection-remix.md
Markdown
│ ├─
image-generation.md
Markdown
│ ├─
song-creation.md
Markdown
│ ├─
song-mv.md
Markdown
│ └─
video-generation.md
Markdown
└─
SKILL.md
Markdown
安全亮点
✓ Entirely markdown-based documentation — no executable code present
✓ All functionality is fully declared in SKILL.md and reference docs
✓ npm/pnpm global install commands are standard package management (no curl|bash)
✓ NETA_TOKEN environment variable requirement is documented and appropriate for API authentication
✓ No obfuscation, base64, or hidden instructions detected
✓ No credential harvesting, data exfiltration, or remote execution patterns
✓ No sensitive file/path access (no ~/.ssh, ~/.aws, .env access)
✓ No supply chain risks — no dependencies, scripts, or binary artifacts
✓ Consistent, coherent documentation across all reference files