中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 5/100
Last scan:1 day ago Rescan
5 /100
OrderKeeper
Post-purchase order and after-sales management skill for mainland China shopping and delivery scenarios
OrderKeeper is a pure documentation/guidance skill with no executable code, no shell access, no network I/O, and no sensitive file access—all declared capabilities are filesystem:READ (for reading SKILL.md and references) and network:READ (for fetching platform policies), which are appropriate for its stated purpose of post-purchase order management guidance.
Skill NameOrderKeeper
Duration33.6s
Enginepi
Safe to install
No action needed. The skill is safe to use as-is.
ResourceDeclaredInferredStatusEvidence
Filesystem READ READ ✓ Aligned SKILL.md reads references/deadline-triage.md, support-script-frames.md, after-sa…
Network READ READ ✓ Aligned SKILL.md mentions fetching platform/seller policies for deadline windows
Shell NONE NONE No shell commands declared or found
Environment NONE NONE No environment variable access declared or found
Skill Invoke NONE NONE No skill invocation patterns found
Clipboard NONE NONE No clipboard access declared or found
Browser NONE NONE No browser automation declared or found
Database NONE NONE No database access declared or found

File Tree

9 files · 23.8 KB · 752 lines
Markdown 7f · 724L JSON 1f · 24L YAML 1f · 4L
├─ 📁 agents
│ └─ 📋 openai.yaml YAML 4L · 443 B
├─ 📁 references
│ ├─ 📝 after-sales-cards.md Markdown 66L · 1.0 KB
│ ├─ 📝 deadline-triage.md Markdown 103L · 3.2 KB
│ └─ 📝 support-script-frames.md Markdown 55L · 2.2 KB
├─ 📝 CHANGELOG.md Markdown 15L · 770 B
├─ 📋 clawhub.json JSON 24L · 563 B
├─ 📝 README.md Markdown 92L · 3.0 KB
├─ 📝 RELEASE.md Markdown 107L · 2.9 KB
└─ 📝 SKILL.md Markdown 286L · 9.7 KB

Security Positives

✓ Skill is entirely documentation-based with no executable code
✓ All declared capabilities are appropriate and minimal for its purpose
✓ No credential harvesting, exfiltration, or sensitive file access
✓ No shell execution, obfuscation, or base64 payloads
✓ No supply chain dependencies to attack
✓ Clear and consistent documentation describing only post-purchase order guidance
✓ Content is human-readable plaintext with no hidden instructions
✓ No scripts, binaries, or dependency files present