system-monitor 安全扫描报告 — 可信 | ClawSafe

5 /100

system-monitor

Monitor system health on the gateway host (Raspberry Pi / ARM / Linux). Reports CPU, RAM, disk, temperature, uptime, load, top processes.

A straightforward system health monitor for Raspberry Pi that reads /proc, /sys, ps, and df — all capabilities declared in SKILL.md with no hidden functionality.

技能名称system-monitor

分析耗时23.4s

引擎pi

✓

可以安装

Approve. All behavior is accurately declared, external tool usage is minimal and necessary, and no credential, network, or obfuscation risks are present.

安全发现 1 项

严重性	安全发现	位置
低危	Subprocess usage not declared in Security section 文档欺骗 SKILL.md's Security section says 'Never writes, modifies, or executes anything beyond reading system stats' and claims 'No network access: Purely local'. While the What It Reports table does list 'df -h' and 'ps aux' as sources, the Security section omits that subprocess is used. This is a minor documentation gap. `subprocess.run(['df', '-h', '-x', 'tmpfs', '-x', 'devtmpfs'], capture_output=True, text=True, timeout=5)` → Update Security section of SKILL.md to clarify that the tool invokes 'df' and 'ps' via subprocess for disk and process data. This is benign and necessary for the stated purpose.	`SKILL.md:42`

资源类型	声明权限	推断权限	状态	证据
文件系统	`READ`	`READ`	✓ 一致	monitor.py:61 'with open("/proc/stat") as f'
命令执行	`NONE`	`READ`	✓ 一致	monitor.py:61 subprocess.run(['df','-h']); monitor.py:92 subprocess.run(['ps','a…
网络访问	`NONE`	`NONE`	—	No network calls found
环境变量	`NONE`	`NONE`	—	No os.environ access
数据库	`NONE`	`NONE`	—	No database access
剪贴板	`NONE`	`NONE`	—	No clipboard access

目录结构

2 文件 · 8.8 KB · 289 行

Python 1f · 219L Markdown 1f · 70L

├─ ▾ 📁 scripts

│ └─ 🐍 monitor.py Python 219L · 6.9 KB

└─ 📝 SKILL.md Markdown 70L · 1.9 KB

安全亮点

✓ No network requests — purely local system monitoring

✓ No credential or secret access — only public /proc and /sys metrics

✓ No obfuscation — all code is plain Python, no base64 or dynamic eval

✓ Error handling via try/except on all file reads and subprocess calls

✓ No filesystem writes — confirmed read-only

✓ No sensitive path access (no ~/.ssh, ~/.aws, .env, etc.)

✓ No persistence mechanisms — no cron, no startup hooks

✓ Subprocess usage (df, ps) is explicitly listed in the What It Reports table

✓ Zero external pip dependencies — stdlib only