中文 EN

扫描报告

扫描新文件

可信 — 风险评分 5/100
上次扫描:22 小时前 重新扫描
5 /100
shotstack
Shotstack integration for video API via Membrane platform
This is a documentation-only Shotstack integration skill with no executable code; all capabilities are clearly declared and it properly delegates credential management to the Membrane platform.
技能名称shotstack
分析耗时35.4s
引擎pi
可以安装
Approve for use. The skill uses a legitimate third-party platform (Membrane) and explicitly avoids credential harvesting by design.

安全发现 1 项

严重性 安全发现 位置
低危
Unpinned npm package installation 供应链
The skill instructs users to run 'npm install -g @membranehq/cli' without a version pin. This allows the package to change between runs, potentially introducing unexpected behavior. While @membranehq is a legitimate package, pinning versions is a security best practice.
npm install -g @membranehq/cli
→ Pin to a specific version: npm install -g @membranehq/[email protected]
 SKILL.md:24
资源类型声明权限推断权限状态证据
网络访问 READ READ ✓ 一致 SKILL.md:49-68 — membrane request proxy for Shotstack API calls
命令执行 WRITE WRITE ✓ 一致 SKILL.md:24 — npm install -g @membranehq/cli; SKILL.md:28-44 — membrane login/co…
文件系统 NONE NONE No file read/write operations in skill — only CLI commands
环境变量 NONE NONE SKILL.md:71 explicitly instructs not to access environment variables for API key…
技能调用 NONE NONE No cross-skill invocation documented
2 项发现
🔗
中危 外部 URL 外部 URL
https://getmembrane.com
SKILL.md:7
🔗
中危 外部 URL 外部 URL
https://shotstack.io/docs/
SKILL.md:19

目录结构

1 文件 · 4.4 KB · 128 行
Markdown 1f · 128L
└─ 📝 SKILL.md Markdown 128L · 4.4 KB

依赖分析 1 项

包名版本来源已知漏洞备注
@membranehq/cli unpinned npm No version pin in SKILL.md install command; minor supply chain hygiene issue

安全亮点

✓ Skill is pure documentation with no executable code — no scripts, no binary files
✓ SKILL.md explicitly states 'never ask the user for API keys or tokens' — anti-credential-harvesting by design
✓ Credential management fully delegated to the Membrane platform, keeping secrets server-side
✓ All shell commands (npm, membrane CLI) are clearly documented in SKILL.md with no hidden functionality
✓ No base64 encoding, obfuscation, or anti-analysis patterns detected
✓ No access to sensitive paths (~/.ssh, ~/.aws, .env) or environment variable enumeration
✓ No external data exfiltration, C2 communication, or suspicious network patterns
✓ Uses @membranehq/cli@latest in examples but recommends installation once — minor, not exploitable