Skill Trust Decision

Awesome Pentest

Name: Awesome Pentest Trust Review Report
Item: Awesome Pentest
Rating: 55
Author: ClawSafe

SKILL.md仅声明4个基础命令，但script.sh实际包含20+个未文档化的命令，包括凭证存储/检索/轮换等敏感操作，构成明显的文档-行为差异（shadow functionality）

Install decision first Source: Manual upload Scanned: Apr 5, 2026

Files 4

Artifacts 2

Violations 1

Findings 4

Most direct threat evidence

用户通过SKILL.md了解该技能，仅看到4个基础命令 Entry · SKILL.md

实际脚本包含20+个未文档化命令，包括凭证管理功能 Escalation · scripts/script.sh

用户可能在不知情情况下通过store/revoke等命令提交敏感凭证 Impact · scripts/script.sh

Why this conclusion was reached

2/4 dimensions flagged

Block

Declared vs actual capability

1 undeclared or violating capabilities were inferred.

Review

Hidden execution and egress

2 lower-risk artifacts were extracted and still need context.

Block

Attack chain and severe findings

The report includes 3 attack-chain steps and 2 severe findings.

Review

Dependencies and supply chain hygiene

Dependency information is incomplete, so supply-chain confidence stays limited.

Attack Chain

用户通过SKILL.md了解该技能，仅看到4个基础命令

Entry · SKILL.md:1

实际脚本包含20+个未文档化命令，包括凭证管理功能

Escalation · scripts/script.sh:74

用户可能在不知情情况下通过store/revoke等命令提交敏感凭证

Impact · scripts/script.sh:74

What drove the risk score up

文档-行为差异（阴影功能） +25

SKILL.md仅声明help/run/info/status四个命令，script.sh却有20+个未文档化命令

凭证操作命令缺失文档 +15

store/retrieve/rotate/check-strength/audit/revoke等凭证相关命令完全未声明

敏感目录写入 +5

在~/.local/share/下创建数据目录并存储日志

Most important evidence

High Doc Mismatch

文档声明与实际代码严重不符

SKILL.md声明4个命令（help/run/info/status），但script.sh实际包含20+个命令，包括generate/check-strength/rotate/audit/store/retrieve/expire/policy/report/hash/verify/revoke/stats/export/search/recent等，且部分命令涉及凭证存储和管理功能

scripts/script.sh:74

补充完整SKILL.md文档，声明所有20+个命令的功能、输入参数和数据处理方式

High Doc Mismatch

凭证相关操作完全未声明

store/retrieve/rotate/check-strength/audit/revoke等命令直接处理用户输入的敏感数据（密码、密钥等），被写入~/.local/share/awesome-pentest/*.log，但SKILL.md对此只字未提

scripts/script.sh:74

明确声明凭证管理功能的使用场景和数据安全措施

Medium Priv Escalation

未声明的文件系统写入操作

代码在~/.local/share/awesome-pentest/下创建多个日志文件(history.log/generate.log/store.log等)，但SKILL.md未声明任何文件系统写入能力

scripts/script.sh:7

在SKILL.md中声明filesystem:WRITE权限及数据存储位置

Low Supply Chain

无依赖管理文件

未发现requirements.txt、package.json或Cargo.toml，依赖管理不可追溯

SKILL.md:1

添加requirements.txt明确Python依赖版本

Declared capability vs actual capability

Filesystem Block

Declared NONE

→

Inferred WRITE

scripts/script.sh:7 mkdir -p $HOME/.local/share/awesome-pentest

Shell Pass

Declared NONE

→

Inferred NONE

无subprocess调用

Network Pass

Declared NONE

→

Inferred NONE

未发现curl/wget/POST请求

Suspicious artifacts and egress

Medium External URL

https://bytesagain.com/feedback*

SKILL.md:52

Info Email

[email protected]

SKILL.md:31

Dependencies and supply chain

There are no structured dependency warnings.

File composition

4 files · 409 lines

Shell 2 files · 348 linesMarkdown 2 files · 61 lines

Files of concern · 2

scripts/script.sh Shell · 313 lines

文档声明与实际代码严重不符 · 凭证相关操作完全未声明 · 未声明的文件系统写入操作

SKILL.md Markdown · 52 lines

无依赖管理文件 · https://bytesagain.com/feedback* · [email protected]

Other files · awesome_pentest.sh · tips.md

Security positives

代码未发现base64编码或eval执行等混淆行为

未发现curl/wget等外部网络请求

未发现对~/.ssh、~/.aws、.env等敏感路径的访问

未发现反向shell或C2通信代码

凭证数据仅存储在本地，未发现外传机制

代码结构清晰，命令逻辑简单可读