中文 EN

扫描报告

扫描新文件

低风险 — 风险评分 15/100
上次扫描:1 天前 重新扫描
15 /100
oneshot-ship
Ship code with oneshot CLI - plan/execute/review/PR automation pipeline
A legitimate code-shipping automation tool documented in SKILL.md with no malicious behavior detected; credential storage in plaintext is a standard security concern but not malicious.
技能名称oneshot-ship
分析耗时25.8s
引擎pi
可以安装
Review the credential storage approach in config.json if implementing; consider using keyring instead of plaintext file storage for API keys.

安全发现 1 项

严重性 安全发现 位置
低危
Plaintext API Key Storage 凭证窃取
The skill documentation shows API keys (anthropicApiKey, linearApiKey) are stored in plaintext at ~/.oneshot/config.json. While this is common for CLI tools, it poses risk if the file is accessible.
"anthropicApiKey": "sk-ant-...", "linearApiKey": "lin_api_..."
→ Consider using OS keyring (Keychain, Credential Manager) instead of plaintext JSON for API key storage.
 SKILL.md:72
资源类型声明权限推断权限状态证据
文件系统 WRITE WRITE ✓ 一致 Creates git worktrees, writes config files, manages repo files
网络访问 READ READ ✓ 一致 SSH connections, API calls to Anthropic/OpenAI/GitHub/Linear
命令执行 WRITE WRITE ✓ 一致 Executes Claude Code CLI, Codex CLI, GitHub CLI commands
环境变量 READ READ ✓ 一致 Reads ANTHROPIC_API_KEY, OPENAI_API_KEY from environment
1 项发现
🔗
中危 外部 URL 外部 URL
https://docs.anthropic.com/en/docs/claude-code
SKILL.md:44

目录结构

1 文件 · 4.7 KB · 133 行
Markdown 1f · 133L
└─ 📝 SKILL.md Markdown 133L · 4.7 KB

安全亮点

✓ MIT licensed, open source (github.com/ADWilkinson/oneshot-cli)
✓ Uses documented, legitimate tools (Claude Code, Codex, GitHub CLI)
✓ Worktree isolation protects main branch from corruption
✓ Per-step timeouts prevent runaway processes
✓ No obfuscation or suspicious encoded content
✓ No hidden instructions in documentation
✓ Clear and comprehensive documentation
✓ No curl|bash remote script execution patterns
✓ No base64-encoded payloads or eval() calls