shiftleft 安全扫描报告 — 低风险 | ClawSafe

20 /100

shiftleft

ShiftLeft static code analysis integration via Membrane CLI

The skill is a documentation-only integration for ShiftLeft via the Membrane CLI; all network and shell operations are explicitly documented, credentials are managed server-side by Membrane, and no hidden or sensitive operations were found.

技能名称shiftleft

分析耗时43.6s

引擎pi

✓

可以安装

Approve for use. The undeclared shell:WRITE and broad network:WRITE capabilities through `membrane request` warrant a documentation note, but the architecture is sound — Membrane handles auth server-side and network calls are confined to the ShiftLeft API proxy.

安全发现 3 项

严重性	安全发现	位置
低危	Shell:WRITE not declared in allowed-tools The skill executes multiple shell commands (npm install, membrane CLI invocations) but shell:WRITE is absent from the capability declaration. This is a doc-to-code mismatch. `npm install -g @membranehq/cli` → Add shell:WRITE to the allowed-tools declaration if shell execution is a supported capability	`SKILL.md:37`
低危	Network:WRITE not declared despite membrane request capability The `membrane request` command allows arbitrary HTTP methods (GET/POST/PUT/PATCH/DELETE) to ShiftLeft API paths. This is a broad network:WRITE capability not declared in the skill metadata. `membrane request CONNECTION_ID /path/to/endpoint` → Add network:WRITE to the allowed-tools declaration if arbitrary HTTP requests are intended	`SKILL.md:79`
低危	npm install without version pin `npm install -g @membranehq/cli` installs the latest version with no version pin, potentially pulling breaking changes silently. `npm install -g @membranehq/cli` → Pin to a specific version: npm install -g @membranehq/[email protected]	`SKILL.md:37`

资源类型	声明权限	推断权限	状态	证据
命令执行	`NONE`	`WRITE`	✗ 越权	SKILL.md:37 — npm install -g @membranehq/cli; SKILL.md:43 — membrane login --ten…
网络访问	`NONE`	`WRITE`	✗ 越权	SKILL.md:79 — membrane request CONNECTION_ID /path/to/endpoint with -X, -H, -d f…
文件系统	`NONE`	`NONE`	—	No filesystem operations found in SKILL.md
环境变量	`NONE`	`NONE`	—	No environment variable access found in SKILL.md

2 项发现

🔗

中危外部 URL 外部 URL

https://getmembrane.com

SKILL.md:7

🔗

中危外部 URL 外部 URL

https://docs.shiftleft.com/

SKILL.md:19

目录结构

1 文件 · 4.4 KB · 128 行

Markdown 1f · 128L

└─ 📝 SKILL.md Markdown 128L · 4.4 KB

依赖分析 1 项

包名	版本	来源	已知漏洞	备注
`@membranehq/cli`	`latest (unpinned)`	npm	否	No version pin — `npm install -g @membranehq/cli` can pull any version

安全亮点

✓ Credentials are managed server-side by Membrane — no local secret storage or exfiltration risk

✓ SKILL.md clearly documents all shell commands and network operations with explicit intent

✓ Skill delegates to a known CLI tool (Membrane), not a custom script — reduces supply chain risk

✓ membrane request is confined to the ShiftLeft API proxy, not arbitrary internet destinations

✓ No sensitive path access (~/.ssh, ~/.aws, .env) detected

✓ No base64/eval/curl|bash patterns or reverse shell indicators

✓ No hidden HTML comments or steganographic payloads