pii-redactor 安全扫描报告 — 低风险 | ClawSafe

15 /100

pii-redactor

Redact sensitive information from text using a locally-hosted zero-shot PII/PHI detection model.

This skill is pure documentation with no implementation code. It describes a legitimate PII-redaction workflow with comprehensive security guidance, but relies on an unverifiable external package (clawguard-pii) with a placeholder GitHub source.

技能名称pii-redactor

分析耗时36.2s

引擎pi

✓

可以安装

Before installing clawguard-pii, audit the package source and verify the GitHub repository is legitimate. Add version-pinned checksums for the package binary.

安全发现 2 项

严重性	安全发现	位置
中危	External package source unverifiable 供应链 The skill installs 'clawguard-pii==1.0.4' with a GitHub source URL that is explicitly marked as a placeholder. No PyPI listing, no real repository URL, no checksum. The package cannot be audited without verifiable source. `pip install clawguard-pii==1.0.4 # Source: https://github.com/anthropics/clawguard-pii (replace with the actual repository URL)` → Replace placeholder URL with the actual audited repository. Verify package integrity via signed releases or pinned checksums before installation.	`SKILL.md:14`
低危	Installation URL is a placeholder 文档欺骗 The 'Source' field in the setup instructions is a placeholder that must be replaced. Users following the docs blindly would install from an unspecified source. `(replace with the actual repository URL)` → Provide the real, verified repository URL before publishing this skill.	`SKILL.md:18`

资源类型	声明权限	推断权限	状态	证据
文件系统	`NONE`	`NONE`	—	No implementation files present — only documentation.
网络访问	`READ`	`READ`	✓ 一致	SKILL.md declares POST to CLAWGUARD_URL/redact and GET /health — legitimately sc…
命令执行	`NONE`	`NONE`	—	No shell commands executed in skill code.
环境变量	`READ`	`READ`	✓ 一致	SKILL.md declares reading CLAWGUARD_URL and CLAWGUARD_TOKEN — necessary for serv…
技能调用	`NONE`	`NONE`	—	No nested skill invocations found.

3 项发现

🔗

中危外部 URL 外部 URL

http://127.0.0.1:

SKILL.md:62

🔗

中危外部 URL 外部 URL

https://developer.nvidia.com/open-model-license

SKILL.md:160

🔗

中危外部 URL 外部 URL

https://spdx.org/licenses/MIT-0.html

SKILL.md:161

目录结构

1 文件 · 5.6 KB · 160 行

Markdown 1f · 160L

└─ 📝 SKILL.md Markdown 160L · 5.6 KB

依赖分析 1 项

包名	版本	来源	已知漏洞	备注
`clawguard-pii`	`1.0.4`	GitHub (placeholder URL — unverifiable)	否	GitHub URL is explicitly marked as placeholder; package source cannot be audited

安全亮点

✓ No implementation code present — skill is purely declarative documentation

✓ Comprehensive security documentation: URL validation rules, HTTPS requirements, token handling guidance

✓ No hidden functionality — all behavior is documented in SKILL.md

✓ No credential harvesting, no data exfiltration, no obfuscation, no base64 or shell execution

✓ Authorization token uses secrets.token_hex(32) — cryptographically appropriate

✓ Fallback manual-review path prevents silent data leaks when service is down

✓ The skill properly scopes network access to localhost/internal hosts only

✓ MIT-0 license clearly declared