中文 EN
Start Review
Skill Trust Decision

E-SafeNet (suspected from encoded content)

SKILL.md 包含异常编码/二进制数据,内容无法正常解析,高度疑似混淆或截断文件。

Install decision first Source: ClawHub Scanned: Apr 12, 2026
Files 1
Artifacts 0
Violations 0
Findings 2

Why this conclusion was reached

0/4 dimensions flagged
Pass
Declared vs actual capability

Declared resources and inferred behavior are broadly aligned.

Pass
Hidden execution and egress

No obvious high-risk egress or execution signals were found.

Pass
Attack chain and severe findings

There is no explicit malicious chain in the report.

Review
Dependencies and supply chain hygiene

Dependency information is incomplete, so supply-chain confidence stays limited.

What drove the risk score up

文件编码异常 +30

SKILL.md 大小 9013 字节但仅有 18 行文本,内容为混合二进制数据,可读文本极少

无脚本可审查 +15

该 skill 无任何 scripts/代码文件,无法验证实际行为

文档内容不可解析 +5

文件声称 SKILL.md 但内容无法正常解析,可能被截断或混淆

Most important evidence

Medium Obfuscation

SKILL.md 包含异常编码内容

SKILL.md 文件大小 9013 字节但仅 18 行有效文本行,内容大部分为不可读二进制数据。可读片段包含 'E-SafeNet'、'LOCK' 等词,但整体无法正常解析为 Markdown,可能经过编码或文件损坏。

SKILL.md:1
要求开发者提供可正常读取的纯文本 SKILL.md,验证文件 SHA256: 94def5b039875dd9bf238d73613abc086c4023a3c6bddc985e234242dbe282f2
Low Doc Mismatch

无脚本文件,无法验证实际行为

该 skill 仅包含一个 SKILL.md 文件,无任何 scripts/*.py/*.sh 可执行脚本。无法通过代码审查确认 skill 实际功能,文档声称的功能无法被验证。

SKILL.md:1
如开发者提供了代码文件,重新提交审查

Declared capability vs actual capability

Filesystem Pass
Declared UNKNOWN
Inferred UNKNOWN
SKILL.md 无法解析
Network Pass
Declared UNKNOWN
Inferred UNKNOWN
SKILL.md 无法解析
Shell Pass
Declared UNKNOWN
Inferred UNKNOWN
无脚本文件

Suspicious artifacts and egress

No obvious IOC was extracted.

Dependencies and supply chain

There are no structured dependency warnings.

File composition

1 files · 18 lines
Markdown 1 files · 18 lines
Files of concern · 1
SKILL.md Markdown · 18 lines
SKILL.md 包含异常编码内容 · 无脚本文件,无法验证实际行为

Security positives

No explicit security positives were supplied.