jobs-hunter-claw 安全扫描报告 — 可信 | ClawSafe

5 /100

jobs-hunter-claw

Unified job hunting automation with Google Sheets integration

Legitimate job hunting automation tool with Google Sheets integration. All functionality is accurately documented with no hidden malicious behavior detected.

技能名称jobs-hunter-claw

分析耗时24.4s

引擎pi

✓

可以安装

This skill is safe to use. Ensure the gog CLI is installed from a trusted source and review Google Sheets sharing permissions.

资源类型	声明权限	推断权限	状态	证据
命令执行	`WRITE`	`WRITE`	✓ 一致	job-tracker.sh uses bash for gog CLI operations
网络访问	`READ`	`READ`	✓ 一致	gog sheets get/update/append for Google Sheets API
文件系统	`NONE`	`NONE`	—	No file read/write operations; uses environment variables for config
环境变量	`READ`	`READ`	✓ 一致	Reads JOB_TRACKER_SPREADSHEET_ID env var

12 项发现

🔗

中危外部 URL 外部 URL

https://clawhub.ai/QuantDeveloperUSA/jobs-hunter-claw

README.md:5

🔗

中危外部 URL 外部 URL

https://docs.google.com/spreadsheets/d/[THIS-IS-THE-ID

README.md:41

🔗

中危外部 URL 外部 URL

https://gogcli.sh

README.md:65

🔗

中危外部 URL 外部 URL

https://docs.google.com/spreadsheets/d/your-sheet-id

SKILL.md:181

🔗

中危外部 URL 外部 URL

https://linkedin.com/jobs/view/123456

SKILL.md:276

🔗

中危外部 URL 外部 URL

https://contacts.google.com/person/c[alphanumeric

SKILL.md:378

🔗

中危外部 URL 外部 URL

https://sheets.google.com

references/google-sheet-setup.md:7

🔗

中危外部 URL 外部 URL

https://docs.google.com/spreadsheets/d/[SPREADSHEET_ID

references/google-sheet-setup.md:12

🔗

中危外部 URL 外部 URL

https://contacts.google.com/person/c123456789

scripts/job-tracker-appscript.js:214

🔗

中危外部 URL 外部 URL

https://contacts\.google\.com/person/c[a-zA-Z0-9

scripts/job-tracker.sh:60

🔗

中危外部 URL 外部 URL

https://contacts.google.com/person/c...

scripts/job-tracker.sh:175

📧

提示邮箱邮箱地址

[email protected]

SKILL.md:57

目录结构

5 文件 · 58.5 KB · 2077 行

Shell 1f · 847L Markdown 3f · 682L JavaScript 1f · 548L

├─ ▾ 📁 references

│ └─ 📝 google-sheet-setup.md Markdown 143L · 3.5 KB

├─ ▾ 📁 scripts

│ ├─ 📜 job-tracker-appscript.js JavaScript 548L · 15.1 KB

│ └─ 🔧 job-tracker.sh Shell 847L · 26.1 KB

├─ 📝 README.md Markdown 80L · 1.9 KB

└─ 📝 SKILL.md Markdown 459L · 11.8 KB

安全亮点

✓ Documentation accurately describes all functionality - no doc-to-code mismatch

✓ All operations are via gog CLI (trusted Google Sheets tool)

✓ No credential harvesting - only reads spreadsheet ID from env var

✓ No base64, eval, or obfuscation patterns detected

✓ No network calls to external IPs - only Google Sheets API

✓ No sensitive file access (~/.ssh, ~/.aws, .env)

✓ No data exfiltration - only stores data in user's own Google Sheet

✓ Python subprocess used only for legitimate JSON handling

✓ Google Apps Script is sandboxed by Google's security model

✓ No cron/scheduled task installation - cron setup is documented for user configuration only