扫描报告
15 /100
ai-intelligent-budget-management
企业预算编制与执行跟踪,智能预警
This skill package contains only documentation/metadata with no implementation code, making it a placeholder or incomplete skill with minimal security surface.
可以安装
This skill cannot be evaluated for runtime security as it contains no executable code. If this is intended as a functional skill, implementation scripts must be added before deployment.
安全发现 2 项
| 严重性 | 安全发现 | 位置 |
|---|---|---|
| 低危 | Incomplete Skill Package 文档欺骗 | SKILL.md:26 |
| 低危 | No allowed-tools Declaration 权限提升 | skill.json:1 |
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | NONE | NONE | — | No code files present to analyze |
| 网络访问 | NONE | NONE | — | No code files present to analyze |
| 命令执行 | NONE | NONE | — | No code files present to analyze |
| 环境变量 | NONE | NONE | — | No code files present to analyze |
| 技能调用 | NONE | NONE | — | No code files present to analyze |
| 剪贴板 | NONE | NONE | — | No code files present to analyze |
| 浏览器 | NONE | NONE | — | No code files present to analyze |
| 数据库 | NONE | NONE | — | No code files present to analyze |
目录结构
2 文件 · 1.3 KB · 62 行 Markdown 1f · 51L
JSON 1f · 11L
├─
skill.json
JSON
└─
SKILL.md
Markdown
安全亮点
✓ No malicious code present - skill contains no executable files
✓ No sensitive file access detected
✓ No network communication code present
✓ No credential harvesting code present
✓ No obfuscation techniques observed
✓ No supply chain dependencies to audit