中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 0/100
Last scan:1 day ago Rescan
0 /100
hui-yi
Manage a file-based cold-memory archive under memory/cold/
This is a straightforward file-based note management skill with no malicious behavior detected. All scripts operate exclusively on the declared memory/cold/ directory using only Python standard library.
Skill Namehui-yi
Duration28.5s
Enginepi
Safe to install
This skill is safe to use. No action required.
ResourceDeclaredInferredStatusEvidence
Filesystem READ READ ✓ Aligned All scripts (cool.py, decay.py, rebuild.py, search.py) only read/write to memory…
Filesystem WRITE WRITE ✓ Aligned rebuild.py writes index.md, tags.json; decay.py modifies note confidence; cool.p…
Network NONE NONE No socket, urllib, requests, or HTTP client imports in any script
Shell NONE NONE No subprocess, os.system, os.popen, or shell execution found
Environment NONE NONE No os.environ iteration or credential key access
Skill Invoke NONE NONE No skill invocation mechanism present
Clipboard NONE NONE No clipboard access code found
Browser NONE NONE No browser automation or web requests
Database NONE NONE No database connectivity code found

File Tree

13 files · 53.3 KB · 1617 lines
Markdown 7f · 1068L Python 4f · 523L YAML 1f · 21L JSON 1f · 5L
├─ 📁 references
│ ├─ 📝 cold-memory-schema.md Markdown 167L · 5.3 KB
│ ├─ 📝 examples.md Markdown 212L · 6.0 KB
│ └─ 📝 heartbeat-cooling-playbook.md Markdown 85L · 3.9 KB
├─ 📁 scripts
│ ├─ 🐍 cool.py Python 147L · 4.6 KB
│ ├─ 🐍 decay.py Python 100L · 3.0 KB
│ ├─ 🐍 rebuild.py Python 187L · 6.5 KB
│ └─ 🐍 search.py Python 89L · 2.8 KB
├─ 📝 CHANGELOG.md Markdown 69L · 2.6 KB
├─ 📋 clawhub.json JSON 5L · 125 B
├─ 📝 MANIFEST_NOTES.md Markdown 37L · 1.2 KB
├─ 📋 manifest.yaml YAML 21L · 800 B
├─ 📝 README.md Markdown 299L · 6.6 KB
└─ 📝 SKILL.md Markdown 199L · 9.9 KB

Security Positives

✓ Uses only Python standard library (argparse, json, pathlib, datetime, re, shutil, sys) - no external dependencies
✓ All scripts use safe pathlib operations for file I/O
✓ Proper error handling with try/except blocks throughout
✓ Path resolution validates inputs and handles edge cases gracefully
✓ Scripts create backups (.bak) before overwriting files (rebuild.py)
✓ Documentation accurately describes all script functionality
✓ Skill explicitly warns against storing secrets/API keys in cold memory
✓ No obfuscation techniques (base64, eval, exec) used
✓ No network requests or data exfiltration indicators
✓ Scope is limited to a single directory tree (memory/cold/)