Scan Report
20 /100
breakup-decision
分还是不分关系决策分析 — Mean Girl 闺蜜风格
纯对话类感情分析工具,图片渲染所需的文件写入和本地HTTP服务属于正常功能范围,无敏感数据访问或外部通信
Safe to install
可直接使用。如需更高透明度,建议在 description 元数据中补充声明文件系统写入和本地网络访问能力
Findings 2 items
| Severity | Finding | Location |
|---|---|---|
| Low | 渲染能力未在顶层声明 | SKILL.md:68 |
| Info | HTTP服务端口硬编码 | scripts/render.md:27 |
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | WRITE | ✓ Aligned | scripts/render.md 写入 /tmp/breakup_card.html |
| Network | NONE | WRITE | ✓ Aligned | scripts/render.md 启动本地 HTTP 服务 18800 端口 |
| Shell | NONE | WRITE | ✓ Aligned | scripts/render.md 执行 bash mkdir/cp 和 python3 |
| Environment | NONE | NONE | — | 无访问 |
| Clipboard | NONE | NONE | — | 无访问 |
| Browser | NONE | READ | ✓ Aligned | 使用 Playwright chromium 进行截图 |
| Skill Invoke | NONE | NONE | — | 无跨Skill调用 |
| Database | NONE | NONE | — | 无数据库访问 |
4 findings
Medium External URL 外部 URL
https://img.shields.io/badge/License-MIT-black?style=flat-square README.md:9 Medium External URL 外部 URL
https://img.shields.io/badge/OpenClaw-Skill-a855f7?style=flat-square README.md:10 Medium External URL 外部 URL
https://img.shields.io/badge/Energy-Mean%20Girl-ff6b9d?style=flat-square README.md:11 Medium External URL 外部 URL
https://img.shields.io/badge/Sugarcoating-Zero-2d1b4e?style=flat-square README.md:12 File Tree
6 files · 16.6 KB · 408 lines Markdown 6f · 408L
├─
▾
references
│ ├─
dimensions.md
Markdown
│ ├─
veto-conditions.md
Markdown
│ └─
ziying-scenario.md
Markdown
├─
▾
scripts
│ └─
render.md
Markdown
├─
README.md
Markdown
└─
SKILL.md
Markdown
Dependencies 1 items
| Package | Version | Source | Known Vulns | Notes |
|---|---|---|---|---|
playwright | * | pip | No | 无版本锁定,但为标准截图工具 |
Security Positives
✓ 纯对话类工具,无外部网络通信
✓ 文件操作限于/tmp/和/root/.openclaw/media/,无敏感路径访问
✓ 无凭证收割或数据外泄行为
✓ 所有操作均为本地图片渲染必要步骤