扫描报告
5 /100
YYClaw — Pay-Per-Call AI Gateway
AI model gateway with on-chain stablecoin payments for accessing Claude, Gemini, and other models
Pure documentation skill providing legitimate AI gateway access with fully declared network calls and environment variable usage for API authentication.
可以安装
Skill is safe to use. No security concerns identified.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 网络访问 | READ | READ | ✓ 一致 | SKILL.md lines 96-115: curl to crypto.yyclaw.cc |
| 环境变量 | READ | READ | ✓ 一致 | SKILL.md line 93: reads YYCLAW_API_KEY |
| 命令执行 | WRITE | WRITE | ✓ 一致 | SKILL.md lines 96-115: curl commands documented |
| 文件系统 | NONE | NONE | — | No file operations in skill |
6 项发现
中危 外部 URL 外部 URL
https://crypto.yyclaw.cc SKILL.md:9 中危 外部 URL 外部 URL
https://crypto.yyclaw.cc/v1/balance SKILL.md:96 中危 外部 URL 外部 URL
https://crypto.yyclaw.cc/v1/usage?limit=10 SKILL.md:101 中危 外部 URL 外部 URL
https://crypto.yyclaw.cc/v1/models SKILL.md:106 中危 外部 URL 外部 URL
https://crypto.yyclaw.cc/v1/chat/completions SKILL.md:111 中危 外部 URL 外部 URL
https://crypto.yyclaw.cc/v1 SKILL.md:124 目录结构
1 文件 · 4.3 KB · 164 行 Markdown 1f · 164L
└─
SKILL.md
Markdown
安全亮点
✓ Single-file documentation-only skill with no executable code
✓ All network requests confined to single declared endpoint (crypto.yyclaw.cc)
✓ Environment variable access limited to declared YYCLAW_API_KEY
✓ Shell usage (curl) appropriate for HTTP API calls and fully documented
✓ No base64, obfuscation, or suspicious patterns detected
✓ No credential exfiltration or data leakage vectors
✓ No dependencies or package files present
✓ No hidden functionality or documentation-to-code mismatch