Scan Report
10 /100
自动化营销推广师
Automated marketing agent for monitoring social media and generating professional responses on EU compliance, VAT, product selection, and logistics topics
This skill is a pure documentation file describing an automated social media marketing agent. No executable code, scripts, or malicious behaviors are present. The only inferred capability is skill_invoke for calling other skills.
Safe to install
Approve for use with standard monitoring. The skill raises ethical concerns around automated social media spamming but poses no technical security risks.
Findings 1 items
| Severity | Finding | Location |
|---|---|---|
| Low | Automated social media engagement Doc Mismatch | SKILL.md:1 |
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | No file operations described or implemented |
| Network | NONE | NONE | — | Network access for social media posting is described conceptually but no code im… |
| Shell | NONE | NONE | — | No shell commands or subprocess usage in the skill |
| Skill Invoke | READ | READ | ✓ Aligned | SKILL.md explicitly declares calling eu-compliance-advisor, eu-market-analyst, l… |
| Environment | NONE | NONE | — | No environment variable access described |
| Clipboard | NONE | NONE | — | No clipboard access mentioned |
| Browser | NONE | NONE | — | No browser automation described |
| Database | NONE | NONE | — | No database access described |
File Tree
1 files · 3.1 KB · 73 lines Markdown 1f · 73L
└─
SKILL.md
Markdown
Security Positives
✓ No executable code present - pure documentation file
✓ No base64, obfuscation, or anti-analysis techniques
✓ No credential harvesting or sensitive data access
✓ No network exfiltration or C2 communication
✓ No supply chain risks (no dependencies)
✓ All declared capabilities align with described functionality