扫描报告
5 /100
sidekick-ai
Sidekick AI integration via Membrane CLI — manage data, records, and automate workflows.
This skill is pure documentation with no embedded code. All behavior is declared in SKILL.md — it installs a legitimate npm CLI package and uses it to interact with a third-party API proxy service (Membrane), with no hidden functionality, credential theft, or exfiltration.
可以安装
No immediate action required. If npm global package installation is a concern, consider whether the skill should instead document a local npm install with version pinning.
安全发现 1 项
| 严重性 | 安全发现 | 位置 |
|---|---|---|
| 低危 | Global npm package install without pinned version 供应链 | SKILL.md:27 |
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 网络访问 | READ | READ | ✓ 一致 | SKILL.md documents membrane CLI calls to Membrane and Sidekick AI APIs |
| 命令执行 | WRITE | WRITE | ✓ 一致 | SKILL.md documents npm install and membrane CLI shell commands |
2 项发现
中危 外部 URL 外部 URL
https://getmembrane.com SKILL.md:7 中危 外部 URL 外部 URL
https://www.sidekickai.com/docs SKILL.md:19 目录结构
1 文件 · 4.4 KB · 126 行 Markdown 1f · 126L
└─
SKILL.md
Markdown
依赖分析 1 项
| 包名 | 版本 | 来源 | 已知漏洞 | 备注 |
|---|---|---|---|---|
@membranehq/cli | latest (unpinned) | npm | 否 | Globally installed without version pinning; only used as a CLI wrapper |
安全亮点
✓ All behavior is documented in SKILL.md — no hidden code or shadow functionality
✓ No credential harvesting or environment variable exfiltration
✓ No obfuscated code, base64 payloads, or anti-analysis patterns
✓ No sensitive file path access (~/.ssh, ~/.aws, .env, etc.)
✓ No scripts or code files present — purely a documentation-only skill
✓ Membrane handles authentication server-side, avoiding local credential storage
✓ No C2 communication, reverse shell, or remote execution beyond documented API calls
✓ Skill metadata (author, version, license, repository) is clearly declared