扫描报告
5 /100
readme-maker
Design beautiful GitHub profile READMEs with templates. CLI for checking, validating, generating, and formatting README files and documentation.
readme-maker is a straightforward bash-based README CLI with purely local file logging — no network calls, credential access, obfuscation, or external dependencies.
可以安装
No blocking action needed. The skill is safe for use as described.
安全发现 1 项
| 严重性 | 安全发现 | 位置 |
|---|---|---|
| 低危 | Logging behavior is mentioned but not detailed in SKILL.md 文档欺骗 | SKILL.md:1 |
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 命令执行 | WRITE | WRITE | ✓ 一致 | Bash shebang, set -euo pipefail, date/wc/du/tail/grep/sed/cat commands — all app… |
| 文件系统 | READ+WRITE | WRITE | ✓ 一致 | Writes exclusively to ~/.local/share/readme-maker/ for logging; no sensitive pat… |
| 网络访问 | NONE | NONE | — | Zero network calls in script.sh. |
| 环境变量 | NONE | NONE | — | No access to os.environ or environment variables beyond HOME. |
| 凭据 | NONE | NONE | — | No credential paths (~/.ssh, ~/.aws, .env) accessed. |
1 项发现
提示 邮箱 邮箱地址
[email protected] SKILL.md:112 目录结构
2 文件 · 15.4 KB · 425 行 Shell 1f · 313L
Markdown 1f · 112L
├─
▾
scripts
│ └─
script.sh
Shell
└─
SKILL.md
Markdown
安全亮点
✓ No network requests — zero outbound connectivity
✓ No credential or sensitive path access (~/.ssh, ~/.aws, .env, etc.)
✓ No obfuscation (no base64, eval, atob, or encoded payloads)
✓ No external dependencies or API calls
✓ Uses strict bash mode (set -euo pipefail)
✓ All file I/O is confined to a dedicated user-local directory (~/.local/share/readme-maker/)
✓ No remote script execution (curl|bash, wget|sh, etc.)
✓ No supply-chain risk — pure standard Unix utilities only
✓ Script content is clear, readable, and auditable