中文 EN

扫描报告

扫描新文件

可信 — 风险评分 5/100
上次扫描:1 天前 重新扫描
5 /100
wechat-cover
Generate WeChat official account cover images with proper 2.35:1 aspect ratio. Supports OpenAI DALL-E and Gemini image generation with customizable styles.
This is a legitimate WeChat cover image generator with no malicious behavior found. All capabilities are declared, dependencies are version-pinned, and no credential theft, data exfiltration, obfuscation, or unauthorized access was detected.
技能名称wechat-cover
分析耗时45.7s
引擎pi
可以安装
This skill is safe to use. No action required.

安全发现 2 项

严重性 安全发现 位置
提示
Incomplete capability declaration in SKILL.md 文档欺骗
SKILL.md does not explicitly declare filesystem:READ (for settings.json) or filesystem:WRITE (for image output), though both are clearly implied by usage examples and the output section. The environment variable access is properly documented.
SKILL.md describes image output in the Output section but omits explicit filesystem capability declarations.
→ Add 'filesystem: READ (for settings.json)' and 'filesystem: WRITE (for generated images)' to the skill declaration header for full transparency.
 SKILL.md:1
提示
Dependencies declared in inline script header 供应链
generate.py declares dependencies with minimum version pins ('openai>=1.12.0', 'pillow>=10.0.0', 'google-genai>=0.8.0') in its inline script header. While these are lower-bound pins rather than exact versions, they are declared and auditable.
requires-python = ">=3.11"
dependencies = ["openai>=1.12.0", "pillow>=10.0.0", "google-genai>=0.8.0"]
→ Consider using exact pinned versions (e.g., openai==1.12.0) for reproducible builds.
 scripts/generate.py:2
资源类型声明权限推断权限状态证据
文件系统 NONE READ ✓ 一致 SKILL.md does not mention reading settings.json or its role. However, file reads…
文件系统 NONE WRITE ✓ 一致 SKILL.md usage examples show --output-dir and --filename parameters but does not…
网络访问 NONE READ ✓ 一致 SKILL.md declares OpenAI and Gemini API calls in the Configuration and Requireme…
环境变量 NONE READ ✓ 一致 SKILL.md declares OPENAI_API_KEY, OPENAI_BASE_URL, and GEMINI_API_KEY environmen…
命令执行 NONE NONE No shell execution found. 'uv run' is a Python script runner, not shell executio…
3 项发现
🔗
中危 外部 URL 外部 URL
https://your-proxy.com/v1
SKILL.md:37
🔗
中危 外部 URL 外部 URL
https://platform.openai.com/api-keys
SKILL.md:152
🔗
中危 外部 URL 外部 URL
https://aistudio.google.com/app/apikey
SKILL.md:153

目录结构

6 文件 · 33.0 KB · 985 行
Python 4f · 818L Markdown 1f · 153L JSON 1f · 14L
├─ 📁 scripts
│ ├─ 🐍 gemini_client.py Python 99L · 3.1 KB
│ ├─ 🐍 generate.py Python 472L · 16.5 KB
│ ├─ 🐍 image_client.py Python 83L · 2.1 KB
│ └─ 🐍 openai_client.py Python 164L · 5.3 KB
├─ 📋 settings.json JSON 14L · 314 B
└─ 📝 SKILL.md Markdown 153L · 5.7 KB

依赖分析 3 项

包名版本来源已知漏洞备注
openai >=1.12.0 inline script header Lower-bound pin; should consider exact version pin
pillow >=10.0.0 inline script header Lower-bound pin; well-established image processing library
google-genai >=0.8.0 inline script header Lower-bound pin; Google's official Gemini SDK

安全亮点

✓ All dependencies are declared with version constraints in the inline script header
✓ API keys are only used to authenticate with the intended provider — no credential exfiltration
✓ No shell execution, subprocess, os.system, or any form of command injection
✓ No access to sensitive paths (~/.ssh, ~/.aws, .env, etc.)
✓ No obfuscation (no base64 decode + execute patterns, no eval, no dynamic code generation)
✓ No supply chain threats — all packages are from well-known, established sources (openai, pillow, google-genai)
✓ No C2 communication or data exfiltration — network calls are exclusively to documented AI provider APIs
✓ Image output is user-controlled and limited to the specified output directory
✓ Settings.json contains only placeholder API keys (not real credentials)
✓ Clean code with no suspicious patterns, hidden functionality, or shadow features
✓ Error handling is appropriate and does not leak sensitive information