扫描报告
5 /100
sms-partner
SMS Partner integration for managing accounts and SMS data
SMS Partner integration skill with clear documentation and legitimate use of Membrane CLI for API interaction.
可以安装
This skill is safe to use. It follows documentation-first practices and uses Membrane CLI for secure credential handling.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | NONE | NONE | — | No filesystem operations in skill |
| 网络访问 | READ | READ | ✓ 一致 | Required for SMS Partner API communication |
| 命令执行 | WRITE | WRITE | ✓ 一致 | membrane CLI commands documented in SKILL.md lines 24-67 |
2 项发现
中危 外部 URL 外部 URL
https://getmembrane.com SKILL.md:7 中危 外部 URL 外部 URL
https://www.smspartner.fr/developpeurs/api-sms/documentation SKILL.md:19 目录结构
1 文件 · 4.3 KB · 123 行 Markdown 1f · 123L
└─
SKILL.md
Markdown
依赖分析 1 项
| 包名 | 版本 | 来源 | 已知漏洞 | 备注 |
|---|---|---|---|---|
@membranehq/cli | latest | npm | 否 | Pinned version recommended for production use |
安全亮点
✓ Uses Membrane CLI which handles credential lifecycle server-side
✓ No local credential storage required
✓ Documentation is complete and matches implementation
✓ Standard npm install for CLI tool installation
✓ Browser-based OAuth authentication is a security best practice
✓ No sensitive path access (~/.ssh, ~/.aws, .env)
✓ No obfuscated or base64-encoded commands
✓ No data exfiltration or C2 communication patterns