story-writer 安全扫描报告 — 可信 | ClawSafe

5 /100

story-writer

Complete end-to-end story development and writing system with project management (Discovery, Story Bible, Book Bible, Drafting, Review, Export)

This is a benign story-writing pipeline skill with no security issues. All 10 Python scripts are pure content-generation tools operating entirely locally with no network, shell, credential, or sensitive-path access.

技能名称story-writer

分析耗时41.4s

引擎pi

✓

可以安装

No action needed. This skill is safe to use as-is.

资源类型	声明权限	推断权限	状态	证据
文件系统	`WRITE`	`WRITE`	✓ 一致	Scripts read/write discovery.json, story-bible.md, book-bible.md, chapters/*.md,…
网络访问	`NONE`	`NONE`	—	No scripts make HTTP requests or network calls
命令执行	`NONE`	`NONE`	—	No scripts use subprocess, os.system, or shell execution
环境变量	`NONE`	`NONE`	—	No scripts read os.environ or access environment variables
凭证	`NONE`	`NONE`	—	No scripts access ~/.ssh, ~/.aws, .env, or API keys
浏览器	`NONE`	`NONE`	—	No browser automation or web access
数据库	`NONE`	`NONE`	—	No database connections

目录结构

17 文件 · 174.0 KB · 5422 行

Python 10f · 3495L Markdown 7f · 1927L

├─ ▾ 📁 references

│ ├─ 📝 fiction-genres-encyclopedia.md Markdown 363L · 11.4 KB

│ ├─ 📝 query-submission.md Markdown 199L · 5.1 KB

│ ├─ 📝 revision-checklist.md Markdown 147L · 4.4 KB

│ ├─ 📝 structure-frameworks.md Markdown 137L · 4.0 KB

│ ├─ 📝 style-guide.md Markdown 298L · 7.2 KB

│ └─ 📝 world-building-prompts.md Markdown 244L · 7.1 KB

├─ ▾ 📁 scripts

│ ├─ 🐍 beat-sheet.py Python 113L · 3.5 KB

│ ├─ 🐍 book-bible-generator.py Python 377L · 11.7 KB

│ ├─ 🐍 chapter-tracker.py Python 117L · 4.3 KB

│ ├─ 🐍 discovery.py Python 329L · 12.1 KB

│ ├─ 🐍 draft-chapter.py Python 351L · 12.6 KB

│ ├─ 🐍 export-html.py Python 403L · 11.3 KB

│ ├─ 🐍 project-status.py Python 249L · 9.4 KB

│ ├─ 🐍 review-book-enhanced.py Python 744L · 26.7 KB

│ ├─ 🐍 review-book.py Python 344L · 10.7 KB

│ └─ 🐍 story-bible-generator.py Python 468L · 17.1 KB

└─ 📝 SKILL.md Markdown 539L · 15.5 KB

安全亮点

✓ No network requests - all scripts operate entirely locally

✓ No shell or subprocess execution in any script

✓ No credential harvesting or sensitive path access (~/.ssh, ~/.aws, .env)

✓ No base64, eval, or obfuscation patterns

✓ No remote code execution or curl|bash patterns

✓ No prompt injection vectors

✓ No supply chain risks - no external dependencies (no requirements.txt, package.json, or Cargo.toml)

✓ Documentation accurately describes all script behaviors

✓ No hidden functionality - all code paths are straightforward content generation

✓ All file I/O is scoped to the project directory (discovery.json, *.md, chapters/, export/)