扫描报告
0 /100
simvoly
Simvoly integration for managing Websites, Funnels, Stores, Memberships, Bookings, Forms and more
This is a documentation-only skill that guides users through the legitimate Membrane CLI for Simvoly integration, with no implementation files, no credential exfiltration, and all network access properly declared.
可以安装
No action required. The skill is safe to use as documented.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 网络访问 | READ | READ | ✓ 一致 | SKILL.md:6 - requires network access |
| 命令执行 | WRITE | WRITE | ✓ 一致 | SKILL.md:35 - npm install -g and membrane CLI commands are documented |
| 文件系统 | NONE | NONE | — | No file operations documented |
| 环境变量 | NONE | NONE | — | No environment variable access documented |
| 剪贴板 | NONE | NONE | — | No clipboard access documented |
| 浏览器 | NONE | NONE | — | Browser authentication via Membrane is declared |
| 数据库 | NONE | NONE | — | No database access documented |
| 技能调用 | NONE | NONE | — | No cross-skill invocation documented |
2 项发现
中危 外部 URL 外部 URL
https://getmembrane.com SKILL.md:7 中危 外部 URL 外部 URL
https://simvoly.com/help/ SKILL.md:19 目录结构
1 文件 · 4.5 KB · 136 行 Markdown 1f · 136L
└─
SKILL.md
Markdown
安全亮点
✓ Documentation-only skill with no executable code
✓ Explicitly prohibits credential harvesting (Section: 'Let Membrane handle credentials')
✓ All network operations are declared and necessary for the Simvoly integration
✓ Uses established authentication patterns (browser-based OAuth via Membrane)
✓ No sensitive file access (.ssh, .aws, .env) documented
✓ No obfuscation, base64 encoding, or suspicious execution patterns
✓ No external IP connections or data exfiltration patterns
✓ MIT license, open source repository referenced
✓ No supply chain risks from unpinned dependencies (CLI-based, not library-based)