ai-customer-service-automation 安全扫描报告 — 可疑 | ClawSafe

40 /100

ai-customer-service-automation

AI 客服自动化 - 7x24小时智能客服，自动回复、工单分配、满意度跟踪

The skill declares extensive AI automation capabilities but contains no actual implementation code—the only files are documentation (SKILL.md) and a package.json referencing a non-existent index.js entry point.

技能名称ai-customer-service-automation

分析耗时28.8s

引擎pi

⚠

谨慎使用

Do not use this skill. It appears to be either a stub with no functionality or a deceptive marketing wrapper. Request the actual implementation files (scripts, source code) before evaluation.

安全发现 2 项

严重性	安全发现	位置
中危	Declared functionality has no implementation 文档欺骗 SKILL.md claims AI-powered features (sentiment analysis, ticket systems, knowledge base sync, multi-channel support) but no source code, scripts, or entry point exists. The only declared entry 'index.js' referenced in package.json is missing. `Core capabilities section declares '智能问答', '情感分析', '工单系统' but no actual implementation present` → Request source code before using. This appears to be a documentation-only stub or marketing material.	`SKILL.md:1`
低危	Marketing content masquerading as technical documentation 文档欺骗 SKILL.md contains pricing tables, ROI calculations, customer testimonials, and sales copy. A legitimate skill would include actual code examples, API documentation, or technical implementation details. `~60% of content is pricing tiers, ROI comparisons, and testimonials` → Verify the skill contains actual implementation before treating as a functional tool.	`SKILL.md:1`

资源类型	声明权限	推断权限	状态	证据
文件系统	`NONE`	`NONE`	—	No code files present
网络访问	`NONE`	`NONE`	—	No code files present
命令执行	`NONE`	`NONE`	—	No scripts/entry points exist
环境变量	`NONE`	`NONE`	—	No code files present
技能调用	`NONE`	`NONE`	—	No code files present
剪贴板	`NONE`	`NONE`	—	No code files present
浏览器	`NONE`	`NONE`	—	No code files present
数据库	`NONE`	`NONE`	—	No code files present

1 项发现

📧

提示邮箱邮箱地址

[email protected]

SKILL.md:88

目录结构

2 文件 · 2.3 KB · 107 行

Markdown 1f · 93L JSON 1f · 14L

├─ 📋 package.json JSON 14L · 359 B

└─ 📝 SKILL.md Markdown 93L · 1.9 KB

安全亮点

✓ No malicious code present (no scripts, no executables)

✓ No credential harvesting or exfiltration behavior

✓ No obfuscation techniques detected

✓ No sensitive file access attempts

✓ No network requests to external IPs

✓ No supply chain risks (no dependencies)