Scan Report
0 /100
cjl-autoresearch-cc
Improve skills, prompts, articles, workflows, and systems via iterative mutation-testing
This autoresearch skill is a safe, read-only content improvement tool that only reads files and performs in-memory text mutations without any network, shell, or credential access.
Safe to install
This skill is safe to use. No security concerns identified.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | READ | READ | ✓ Aligned | Skill reads target SKILL.md/plugin files for analysis only |
| Network | NONE | NONE | — | No network operations described or used |
| Shell | NONE | NONE | — | No shell commands, subprocess, or eval patterns |
| Environment | NONE | NONE | — | No environment variable access |
| Skill Invoke | READ | READ | ✓ Aligned | Can read other skills for optimization purposes |
| Clipboard | NONE | NONE | — | No clipboard access |
| Browser | NONE | NONE | — | No browser operations |
| Database | NONE | NONE | — | No database access |
File Tree
5 files · 35.6 KB · 1175 lines Markdown 5f · 1175L
├─
▾
references
│ └─
mutation_strategies.md
Markdown
├─
CLAUDE.md
Markdown
├─
README_zh.md
Markdown
├─
README.md
Markdown
└─
SKILL.md
Markdown
Security Positives
✓ Pure text-processing skill with no code execution capabilities
✓ All operations are in-memory with no disk writes (test cases stored in context)
✓ Documentation accurately describes behavior - no hidden functionality
✓ No external dependencies or package requirements
✓ Target file access is scoped to specific ~/.claude/skills/ and plugin paths
✓ No credential, SSH key, or sensitive file access attempted
✓ No network requests or data exfiltration vectors
✓ No obfuscation techniques (base64, eval, etc.)
✓ Mutation strategies are document-centric (text quality improvements only)