中文 EN

扫描报告

扫描新文件

低风险 — 风险评分 20/100
上次扫描:1 天前 重新扫描
20 /100
flyai-visa-timeline
签证进度规划与提醒助手 - Visa timeline planning assistant
A benign visa planning assistant with minor documentation gaps regarding shell execution requirements for npm install.
技能名称flyai-visa-timeline
分析耗时35.6s
引擎pi
可以安装
Add explicit declaration of Bash/shell:WRITE permission requirement for npm install of the flyai-cli tool in SKILL.md. No action needed to block usage.

安全发现 3 项

严重性 安全发现 位置
低危
Shell permission not declared 文档欺骗
SKILL.md does not explicitly declare that Bash/shell:WRITE permission is required for the npm install -g command. The core-workflow.md shows this is a mandatory pre-step.
npm install -g @fly-ai/flyai-cli@latest --registry=https://registry.npmjs.org
→ Add explicit declaration of shell:WRITE permission requirement in SKILL.md capabilities section
 reference/core-workflow.md:10
低危
CLI tool version unpinned in npx calls 供应链
reference/tools.md uses 'npx @anthropic-ai/flyai-cli@latest' which fetches the latest version each time, introducing supply chain risk.
npx @anthropic-ai/flyai-cli@latest
→ Consider pinning to a specific version for reproducible behavior
 reference/tools.md:6
提示
External URLs in reference files not documented in SKILL.md 文档欺骗
reference/core-workflow.md references nodejs.org and npmmirror.com URLs that are not mentioned in the main SKILL.md
https://nodejs.org/
→ Consider adding these URLs to SKILL.md for transparency
 reference/core-workflow.md:19
资源类型声明权限推断权限状态证据
文件系统 READ/WRITE READ/WRITE ✓ 一致 SKILL.md and user-profile-storage.md declare ~/.flyai/user-profile.md access
命令执行 NONE WRITE ✗ 越权 reference/tools.md and core-workflow.md reference 'npm install -g @fly-ai/flyai-…
网络访问 NONE READ ✗ 越权 flyai CLI commands make outbound network requests; external URLs in reference fi…
环境变量 NONE NONE No environment variable access detected
技能调用 READ/WRITE READ/WRITE ✓ 一致 user-profile-storage.md declares search_memory/update_memory usage
4 项发现
🔗
中危 外部 URL 外部 URL
https://nodejs.org/
reference/core-workflow.md:19
🔗
中危 外部 URL 外部 URL
https://registry.npmmirror.com
reference/core-workflow.md:21
🔗
中危 外部 URL 外部 URL
https://img.alicdn.com/...
reference/search-hotel.md:44
🔗
中危 外部 URL 外部 URL
https://img.alicdn.com/tfscom/...
reference/search-poi.md:32

目录结构

13 文件 · 31.4 KB · 1048 行
Markdown 13f · 1048L
├─ 📁 reference
│ ├─ 📝 ai-search.md Markdown 26L · 659 B
│ ├─ 📝 core-workflow.md Markdown 243L · 7.0 KB
│ ├─ 📝 examples.md Markdown 42L · 1.5 KB
│ ├─ 📝 keyword-search.md Markdown 53L · 1.6 KB
│ ├─ 📝 search-flight.md Markdown 87L · 3.0 KB
│ ├─ 📝 search-hotel.md Markdown 57L · 1.8 KB
│ ├─ 📝 search-marriott-hotel.md Markdown 54L · 1.8 KB
│ ├─ 📝 search-marriott-package.md Markdown 40L · 995 B
│ ├─ 📝 search-poi.md Markdown 47L · 2.2 KB
│ ├─ 📝 search-train.md Markdown 77L · 2.6 KB
│ ├─ 📝 tools.md Markdown 34L · 782 B
│ └─ 📝 user-profile-storage.md Markdown 187L · 4.1 KB
└─ 📝 SKILL.md Markdown 101L · 3.6 KB

依赖分析 2 项

包名版本来源已知漏洞备注
@fly-ai/flyai-cli latest npm Version pinned to latest via npx - supply chain risk
@anthropic-ai/flyai-cli latest npm Version not pinned

安全亮点

✓ No credential harvesting or sensitive data theft detected
✓ No base64-encoded commands or obfuscation patterns found
✓ No reverse shell, C2, or data exfiltration behavior
✓ Filesystem access is limited to user preference storage (~/.flyai/)
✓ All external URLs point to legitimate services (npm registries, Alibaba CDN)
✓ Skill functionality is straightforward travel planning - no hidden malicious intent
✓ User profile storage is clearly documented with dual-mode fallback