Scan Report
15 /100
ai-intelligent-budget-management
企业预算编制与执行跟踪,智能预警
This skill package contains only documentation/metadata with no implementation code, making it a placeholder or incomplete skill with minimal security surface.
Safe to install
This skill cannot be evaluated for runtime security as it contains no executable code. If this is intended as a functional skill, implementation scripts must be added before deployment.
Findings 2 items
| Severity | Finding | Location |
|---|---|---|
| Low | Incomplete Skill Package Doc Mismatch | SKILL.md:26 |
| Low | No allowed-tools Declaration Priv Escalation | skill.json:1 |
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | No code files present to analyze |
| Network | NONE | NONE | — | No code files present to analyze |
| Shell | NONE | NONE | — | No code files present to analyze |
| Environment | NONE | NONE | — | No code files present to analyze |
| Skill Invoke | NONE | NONE | — | No code files present to analyze |
| Clipboard | NONE | NONE | — | No code files present to analyze |
| Browser | NONE | NONE | — | No code files present to analyze |
| Database | NONE | NONE | — | No code files present to analyze |
File Tree
2 files · 1.3 KB · 62 lines Markdown 1f · 51L
JSON 1f · 11L
├─
skill.json
JSON
└─
SKILL.md
Markdown
Security Positives
✓ No malicious code present - skill contains no executable files
✓ No sensitive file access detected
✓ No network communication code present
✓ No credential harvesting code present
✓ No obfuscation techniques observed
✓ No supply chain dependencies to audit