安全决策报告
PathClaw
Medical pathology diagnosis skill with hardcoded external IP address, shell execution via curl not explicitly declared, and user file upload to an unverified remote server.
最直接的威胁证据
高危
Hardcoded External IP Address The skill connects to a hardcoded IP address (119.91.47.20) instead of a domain name. This prevents SSL certificate verification and server identity validation, making the skill vulnerable to man-in-the-middle attacks.
SKILL.md:7 为什么得出这个结论
3/4 个维度触发 阻止
声明与实际能力
发现 1 项声明之外的能力或越权行为。
阻止
隐藏执行与外联
提取到 1 个高危 IOC 或外联信号。
阻止
攻击链与高危发现
报告包含 0 步攻击链,另有 1 项高危或严重发现。
复核
依赖与供应链卫生
没有完整依赖信息,供应链判断需要保留弹性。
风险分是怎么被拉高的
Hardcoded external IP address +20
Skill connects to http://119.91.47.20:8111/ without domain verification or SSL pinning
Undeclared shell execution +15
SKILL.md documents curl commands implying shell:WRITE, but this is not explicitly declared in capability requirements
File upload to external IP +10
User pathology images (.svs) uploaded to hardcoded external IP without documented data retention policy
No malicious code found +-10
Only SKILL.md present; no implementation scripts to analyze for hidden behavior
最关键的证据
高危
Hardcoded External IP Address
The skill connects to a hardcoded IP address (119.91.47.20) instead of a domain name. This prevents SSL certificate verification and server identity validation, making the skill vulnerable to man-in-the-middle attacks.
SKILL.md:7 Replace with a proper domain name with valid TLS certificate
中危
Undeclared Shell Execution
The skill documents curl commands which require shell:WRITE execution, but the SKILL.md does not explicitly declare this capability requirement.
SKILL.md:15 Document shell:WRITE as required capability in SKILL.md header
中危
Medical Image Upload to External Server
User-provided pathology slide images (.svs files) are uploaded to an external IP without documented data handling, retention, or privacy policies.
SKILL.md:35 Add data handling documentation and ensure compliance with medical data privacy requirements
低危
No SSL/TLS Verification Documentation
The skill does not document whether SSL certificate verification is performed on API connections.
SKILL.md:7 Use HTTPS and document TLS verification behavior
声明能力 vs 实际能力
网络访问 通过
声明 READ
→ 推断 READ
SKILL.md describes API calls to external server 命令执行 阻止
声明 NONE
→ 推断 WRITE
SKILL.md:15-50 - curl commands require shell execution 可疑产物与外联
高危 IP 地址
119.91.47.20 SKILL.md:7
中危 外部 URL
http://119.91.47.20:8111/ SKILL.md:7
中危 外部 URL
http://119.91.47.20:8111/api/user/login SKILL.md:22
中危 外部 URL
http://119.91.47.20:8111/api/v1/diagnosis/run SKILL.md:44
中危 外部 URL
http://119.91.47.20:8111/api/v1/diagnosis/ SKILL.md:56
依赖与供应链
没有结构化依赖告警。
文件构成
1 个文件 · 115 行
Markdown 1 个文件 · 115 行
需关注文件 · 1
SKILL.md Hardcoded External IP Address · Undeclared Shell Execution · Medical Image Upload to External Server · No SSL/TLS Verification Documentation · 119.91.47.20 · http://119.91.47.20:8111/ · http://119.91.47.20:8111/api/user/login · http://119.91.47.20:8111/api/v1/diagnosis/run · http://119.91.47.20:8111/api/v1/diagnosis/
安全亮点
Comprehensive error handling documented (retry with exponential backoff)
Token masking requirements documented for security
File format validation before upload
Clear status code handling documented
No base64-encoded payloads or obfuscated code found