Skill Trust Decision

115-skills

Name: 115-skills Trust Review Report
Item: 115-skills
Rating: 72
Author: ClawSafe

115网盘管理工具存在可疑硬编码IP和依赖版本锁定问题，但核心功能无明显恶意行为，凭证存储使用本地加密

Install decision first Source: ClawHub Scanned: Apr 6, 2026

Files 28

Artifacts 14

Violations 0

Findings 4

Most direct threat evidence

High IP Address

120.0.0.0

Why this conclusion was reached

1/4 dimensions flagged

Pass

Declared vs actual capability

Declared resources and inferred behavior are broadly aligned.

Block

Hidden execution and egress

2 high-risk artifacts or egress signals were extracted.

Pass

Attack chain and severe findings

There is no explicit malicious chain in the report.

Review

Dependencies and supply chain hygiene

1 dependency or supply-chain issues need attention.

What drove the risk score up

硬编码私有IP在User-Agent +15

lib/auth-puppeteer.js:39 和 lib/auth.js:20 使用异常IP标识

axios依赖无版本锁定 +8

package.json中axios:^1.6.0可能引入已知漏洞

Puppeteer无头浏览器 +5

auth-puppeteer.js使用无头模式，虽声称用于扫码但行为可疑

Most important evidence

Medium Doc Mismatch

User-Agent包含可疑硬编码IP

lib/auth.js第20行User-Agent标识为'Mozilla/5.0 115Browser/23.9.3.2'，其中版本号格式异常(23.9.3.2)疑似硬编码IP

lib/auth.js:20

使用标准浏览器User-Agent或115官方标识

Medium Obfuscation

Puppeteer无头浏览器启动参数可疑

auth-puppeteer.js使用--no-sandbox和--disable-setuid-sandbox参数启动无头浏览器，虽声称用于扫码但可绕过安全限制

lib/auth-puppeteer.js:39

评估是否需要无头模式，考虑使用headful模式提高透明度

Medium Supply Chain

axios依赖缺少版本锁定

package.json中axios使用^1.6.0版本范围，可能自动升级到存在CVE漏洞的版本

package.json:32

锁定为具体版本如[email protected]

Low Priv Escalation

Cookie存储路径权限设置

cookie-store.js将凭证加密存储在~/.openclaw/目录，权限设为0o600(仅所有者读写)，但目录默认权限可能过宽

lib/storage/cookie-store.js:85

确保父目录~/.openclaw/权限也限制为0700

Declared capability vs actual capability

Network Pass

Declared READ

→

Inferred READ

仅访问115官方API

Filesystem Pass

Declared READ

→

Inferred READ

仅操作~/.openclaw/目录

Environment Pass

Declared NONE

→

Inferred READ

cookie-store.js读取HOME环境变量用于存储路径

Suspicious artifacts and egress

High IP Address

120.0.0.0

lib/auth-puppeteer.js:39

High IP Address

23.9.3.2

lib/auth.js:20

Medium External URL

https://115.com/s/SHARE_CODE

SKILL.md:148

Medium External URL

https://115.com/s/xxx

index.js:207

Medium External URL

https://115.com/

lib/auth-puppeteer.js:42

Medium External URL

https://passport.115.com/qrcode/generate

lib/auth-web.js:90

Medium External URL

https://passportapi.115.com

lib/auth.js:13

Medium External URL

https://webapi.115.com

lib/auth.js:14

Medium External URL

https://my.115.com/?ct=ajax&ac=nav

lib/auth.js:250

Medium External URL

https://uplb.115.com

lib/files/transfer.js:17

Medium External URL

https://lixian.115.com

lib/lixian/download.js:15

Medium External URL

https://115.com/s/abc123

lib/share/transfer.js:23

Dependencies and supply chain

Package	Version	Source	Known vuln	Notes
axios	`^1.6.0`	npm	Yes	无版本锁定，可能引入CVE-2024-39338等已知漏洞
puppeteer	`^24.39.1`	npm	No	版本锁定良好
qrcode	`^1.5.3`	npm	No	版本锁定良好
form-data	`^4.0.0`	npm	No	版本锁定良好
qs	`^6.15.0`	npm	No	版本锁定良好

File composition

28 files · 9007 lines

JavaScript 26 files · 8729 linesMarkdown 1 files · 222 linesJSON 1 files · 56 lines

Files of concern · 2

index.js JavaScript · 345 lines

https://115.com/s/xxx

lib/share/transfer.js JavaScript · 317 lines

https://115.com/s/abc123 · https://115.com/s/abc123?password=xyzw · https://115.com/s/$

Other files · response-builder.js · clean-advisor.js · lixian-manager.js · history-manager.js · batch-operations.js · error-handler.js +4

28 files · 226.6 KB · 9007 lines

JavaScript 26f · 8729LMarkdown 1f · 222LJSON 1f · 56L

├─ ▾ 📁 lib

│ ├─ ▾ 📁 client

│ │ └─ 📜 http-client.js JavaScript 315L · 8.0 KB

│ ├─ ▾ 📁 context

│ │ ├─ 📜 history-manager.js JavaScript 517L · 12.1 KB

│ │ └─ 📜 session-context.js JavaScript 298L · 6.4 KB

│ ├─ ▾ 📁 error

│ │ └─ 📜 error-handler.js JavaScript 430L · 11.1 KB

│ ├─ ▾ 📁 files

│ │ ├─ 📜 batch-operations.js JavaScript 467L · 11.8 KB

│ │ ├─ 📜 browser.js JavaScript 275L · 6.2 KB

│ │ ├─ 📜 operations.js JavaScript 289L · 7.0 KB

│ │ └─ 📜 transfer.js JavaScript 257L · 6.5 KB

│ ├─ ▾ 📁 lixian

│ │ ├─ 📜 download.js JavaScript 274L · 6.5 KB

│ │ └─ 📜 lixian-manager.js JavaScript 523L · 13.2 KB

│ ├─ ▾ 📁 organizer

│ │ ├─ 📜 classifier.js JavaScript 153L · 4.3 KB

│ │ ├─ 📜 clean-advisor.js JavaScript 486L · 13.7 KB

│ │ └─ 📜 smart-organizer.js JavaScript 289L · 8.0 KB

│ ├─ ▾ 📁 parser

│ │ └─ 📜 command-parser.js JavaScript 326L · 8.6 KB

│ ├─ ▾ 📁 recommender

│ │ └─ 📜 action-recommender.js JavaScript 459L · 11.0 KB

│ ├─ ▾ 📁 share

│ │ ├─ 📜 share-manager.js JavaScript 363L · 9.1 KB

│ │ └─ 📜 transfer.js JavaScript 317L · 8.2 KB

│ ├─ ▾ 📁 storage

│ │ └─ 📜 cookie-store.js JavaScript 218L · 5.3 KB

│ ├─ ▾ 📁 ui

│ │ ├─ 📜 progress-display.js JavaScript 358L · 9.1 KB

│ │ └─ 📜 response-builder.js JavaScript 560L · 14.2 KB

│ ├─ ▾ 📁 utils

│ │ └─ 📜 helpers.js JavaScript 32L · 574 B

│ ├─ 📜 auth-puppeteer.js JavaScript 304L · 7.9 KB

│ ├─ 📜 auth-web.js JavaScript 262L · 6.0 KB

│ ├─ 📜 auth.js JavaScript 315L · 7.8 KB

│ └─ 📜 session.js JavaScript 297L · 6.6 KB

├─ 📝 SKILL.md Markdown 222L · 6.3 KB

├─ 📜 index.js JavaScript 345L · 9.8 KB

└─ 📋 package.json JSON 56L · 1.5 KB

Security positives

Cookie使用AES-256-GCM本地加密存储，密钥派生函数PBKDF2使用100000次迭代

所有API请求指向115官方域名(webapi.115.com等)，无第三方数据外泄

代码结构清晰，错误处理完善，无明显RCE或凭证收割行为

高危操作(登录、转存)设置disable-model-invocation，需用户显式调用

Puppeteer仅用于自动化扫码登录，功能与声明一致