扫描报告
0 /100
html-analysis
Analyze the structure and content of HTML documents using MinerU. Returns structured Markdown with layout information, headings, and content hierarchy preserved.
This is a pure documentation skill for a legitimate open-source HTML analysis tool (MinerU). No executable code, no suspicious patterns, no credential harvesting, and no hidden functionality.
可以安装
This skill is safe to use. It merely provides documentation for the MinerU CLI tool. No action required.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | NONE | NONE | — | SKILL.md - No filesystem access described |
| 网络访问 | READ | READ | ✓ 一致 | SKILL.md:29-30 - Uses mineru-open-api for remote URL analysis |
| 命令执行 | NONE | NONE | — | SKILL.md - No shell execution; only documents CLI tool usage |
| 环境变量 | READ | READ | ✓ 一致 | SKILL.md:39 - Requires MINERU_TOKEN environment variable |
| 技能调用 | NONE | NONE | — | SKILL.md - No skill-to-skill invocations |
| 剪贴板 | NONE | NONE | — | SKILL.md - No clipboard access |
| 浏览器 | NONE | NONE | — | SKILL.md - No browser automation |
| 数据库 | NONE | NONE | — | SKILL.md - No database access |
2 项发现
中危 外部 URL 外部 URL
https://mineru.net SKILL.md:4 中危 外部 URL 外部 URL
https://mineru.net/apiManage/token SKILL.md:42 目录结构
1 文件 · 3.0 KB · 57 行 Markdown 1f · 57L
└─
SKILL.md
Markdown
安全亮点
✓ Pure documentation skill with no executable code
✓ References legitimate open-source tool (MinerU by OpenDataLab/Shanghai AI Lab)
✓ No credential harvesting beyond MINERU_TOKEN which is for service authentication
✓ No base64/eval patterns or suspicious encoding
✓ No hidden instructions in comments
✓ No sensitive path access (~/.ssh, ~/.aws, .env)
✓ No external data exfiltration
✓ No curl|bash or remote script execution
✓ Token is used only for MinerU API authentication, not exfiltrated