中文 EN

扫描报告

扫描新文件

低风险 — 风险评分 15/100
上次扫描:1 天前 重新扫描
15 /100
bp-prototype
BP原型模板制造 Skill - 通过对话交互,从BP规范(GitHub) + BP系统接口(实时数据)自动推理生成四套空白母版模板(年报/半年报/季报/月报)
Legitimate BP template generation skill with no malicious behavior detected. Declared exec permission is a minor doc inconsistency but actual implementation only uses standard file/network operations.
技能名称bp-prototype
分析耗时44.0s
引擎pi
可以安装
Accept for use. Consider clarifying the 'exec' tool declaration in SKILL.md to reflect actual READ/WRITE file operations instead.

安全发现 1 项

严重性 安全发现 位置
低危
Misleading tool permission declaration 文档欺骗
SKILL.md declares 'exec' permission with risk_level:medium for the generate tool, but the actual implementation (scripts/generate.py) only performs file I/O and HTTP requests using urllib. No command execution occurs.
permission: exec
    risk_level: medium
→ Change permission to 'read_write' and risk_level to 'low' to accurately reflect actual capabilities
 SKILL.md:10
资源类型声明权限推断权限状态证据
文件系统 NONE WRITE ✓ 一致 scripts/generate.py:143 - version_dir.mkdir() writes to versions/
文件系统 NONE READ ✓ 一致 scripts/generate.py reads references/ directory
网络访问 READ READ ✓ 一致 scripts/generate.py:117 - update_spec() fetches from GitHub
命令执行 NONE NONE No subprocess/os.system calls found
环境变量 NONE NONE Proxy env vars only, no credential access
技能调用 NONE NONE No skill invocation patterns
剪贴板 NONE NONE No clipboard access
浏览器 NONE NONE No browser automation
数据库 NONE NONE No database operations

目录结构

11 文件 · 66.2 KB · 1812 行
Markdown 8f · 1499L Python 1f · 237L JSON 2f · 76L
├─ 📁 references
│ ├─ 📁 bp-examples
│ │ ├─ 📋 中心BP_产品中心_v1.json JSON 39L · 937 B
│ │ └─ 📋 集团BP_G1_v1.json JSON 37L · 975 B
│ ├─ 📁 bp-spec
│ │ └─ 📝 BP系统操作手册.md Markdown 472L · 26.8 KB
│ └─ 📁 template-rules
│ └─ 📝 生成规则.md Markdown 119L · 4.8 KB
├─ 📁 scripts
│ └─ 🐍 generate.py Python 237L · 7.6 KB
├─ 📁 versions
│ ├─ 📁 20260401-175457-v1
│ │ ├─ 📝 P001-T001-HALFYEAR-TPL-v1_半年报模板.md Markdown 128L · 3.7 KB
│ │ ├─ 📝 P001-T001-MONTH-TPL-v1_月报模板.md Markdown 152L · 3.8 KB
│ │ ├─ 📝 P001-T001-QUARTER-TPL-v1_季报模板.md Markdown 132L · 3.7 KB
│ │ └─ 📝 P001-T001-YEAR-TPL-v1_年报模板.md Markdown 133L · 3.7 KB
│ └─ 📁 20260401-184800-v2-test
│ └─ 📝 P001-T001-QUARTER-TPL-v2-test_季报模板.md Markdown 178L · 5.3 KB
└─ 📝 SKILL.md Markdown 185L · 5.1 KB

安全亮点

✓ Network access limited to explicitly declared GitHub URL and BP system API endpoints
✓ File operations scoped to project subdirectories (versions/, references/)
✓ Uses Python urllib (not curl|bash) for external downloads
✓ No credential harvesting or environment variable access for sensitive data
✓ No obfuscation, base64 encoding, or anti-analysis patterns
✓ No external IP connections beyond declared GitHub/API hosts
✓ Clear, well-documented Python implementation (237 lines)
✓ Version-pinned references in example JSON files
✓ No cron jobs, startup hooks, or persistence mechanisms
✓ All template files are standard Markdown with no hidden content