中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 5/100
Last scan:1 day ago Rescan
5 /100
story-writer
Complete end-to-end story development and writing system with project management (Discovery, Story Bible, Book Bible, Drafting, Review, Export)
This is a benign story-writing pipeline skill with no security issues. All 10 Python scripts are pure content-generation tools operating entirely locally with no network, shell, credential, or sensitive-path access.
Skill Namestory-writer
Duration41.4s
Enginepi
Safe to install
No action needed. This skill is safe to use as-is.
ResourceDeclaredInferredStatusEvidence
Filesystem WRITE WRITE ✓ Aligned Scripts read/write discovery.json, story-bible.md, book-bible.md, chapters/*.md,…
Network NONE NONE No scripts make HTTP requests or network calls
Shell NONE NONE No scripts use subprocess, os.system, or shell execution
Environment NONE NONE No scripts read os.environ or access environment variables
credential NONE NONE No scripts access ~/.ssh, ~/.aws, .env, or API keys
Browser NONE NONE No browser automation or web access
Database NONE NONE No database connections

File Tree

17 files · 174.0 KB · 5422 lines
Python 10f · 3495L Markdown 7f · 1927L
├─ 📁 references
│ ├─ 📝 fiction-genres-encyclopedia.md Markdown 363L · 11.4 KB
│ ├─ 📝 query-submission.md Markdown 199L · 5.1 KB
│ ├─ 📝 revision-checklist.md Markdown 147L · 4.4 KB
│ ├─ 📝 structure-frameworks.md Markdown 137L · 4.0 KB
│ ├─ 📝 style-guide.md Markdown 298L · 7.2 KB
│ └─ 📝 world-building-prompts.md Markdown 244L · 7.1 KB
├─ 📁 scripts
│ ├─ 🐍 beat-sheet.py Python 113L · 3.5 KB
│ ├─ 🐍 book-bible-generator.py Python 377L · 11.7 KB
│ ├─ 🐍 chapter-tracker.py Python 117L · 4.3 KB
│ ├─ 🐍 discovery.py Python 329L · 12.1 KB
│ ├─ 🐍 draft-chapter.py Python 351L · 12.6 KB
│ ├─ 🐍 export-html.py Python 403L · 11.3 KB
│ ├─ 🐍 project-status.py Python 249L · 9.4 KB
│ ├─ 🐍 review-book-enhanced.py Python 744L · 26.7 KB
│ ├─ 🐍 review-book.py Python 344L · 10.7 KB
│ └─ 🐍 story-bible-generator.py Python 468L · 17.1 KB
└─ 📝 SKILL.md Markdown 539L · 15.5 KB

Security Positives

✓ No network requests - all scripts operate entirely locally
✓ No shell or subprocess execution in any script
✓ No credential harvesting or sensitive path access (~/.ssh, ~/.aws, .env)
✓ No base64, eval, or obfuscation patterns
✓ No remote code execution or curl|bash patterns
✓ No prompt injection vectors
✓ No supply chain risks - no external dependencies (no requirements.txt, package.json, or Cargo.toml)
✓ Documentation accurately describes all script behaviors
✓ No hidden functionality - all code paths are straightforward content generation
✓ All file I/O is scoped to the project directory (discovery.json, *.md, chapters/, export/)