sofort 安全扫描报告 — 低风险 | ClawSafe

15 /100

sofort

SOFORT direct online banking payment integration skill using the Membrane CLI

This is a straightforward SOFORT payment integration skill that uses the Membrane CLI. All capabilities (network, shell) are declared, no hidden functionality exists, and credential management is properly delegated to Membrane.

技能名称sofort

分析耗时25.6s

引擎pi

✓

可以安装

No immediate action required. Consider pinning the @membranehq/cli version in documentation for reproducible builds.

安全发现 2 项

严重性	安全发现	位置
低危	CLI package version not pinned 供应链 The documentation instructs users to install @membranehq/cli with @latest tag instead of pinning a specific version. This could lead to unexpected behavior if the package is updated. `npm install -g @membranehq/cli` → Pin to a specific version, e.g., npm install -g @membranehq/[email protected]	`SKILL.md:25`
低危	Action discovery uses @latest tag 供应链 The npx command for action discovery also uses @latest, which bypasses any locally installed version. `npx @membranehq/cli@latest action list` → Use a pinned version consistent with the installed CLI version.	`SKILL.md:53`

资源类型	声明权限	推断权限	状态	证据
网络访问	`READ`	`READ`	✓ 一致	SKILL.md - all shell commands (membrane login, connect, action run, request) int…
命令执行	`WRITE`	`WRITE`	✓ 一致	SKILL.md - documents npm install, membrane login, membrane connect, membrane act…
文件系统	`NONE`	`NONE`	—	No file operations performed or declared
环境变量	`NONE`	`NONE`	—	No environment variable access declared or observed
技能调用	`NONE`	`NONE`	—	No inter-skill invocation declared
剪贴板	`NONE`	`NONE`	—	No clipboard access declared or observed
浏览器	`NONE`	`NONE`	—	Browser used only for OAuth login flow, fully declared and user-driven
数据库	`NONE`	`NONE`	—	No database operations declared or observed

2 项发现

🔗

中危外部 URL 外部 URL

https://getmembrane.com

SKILL.md:7

🔗

中危外部 URL 外部 URL

https://developers.sofort.com/

SKILL.md:19

目录结构

1 文件 · 4.3 KB · 123 行

Markdown 1f · 123L

└─ 📝 SKILL.md Markdown 123L · 4.3 KB

依赖分析 1 项

包名	版本	来源	已知漏洞	备注
`@membranehq/cli`	`latest`	npm	否	No version pinned — recommended to pin a specific version

安全亮点

✓ All shell capabilities are explicitly declared in SKILL.md

✓ No credential harvesting — credentials are managed server-side by Membrane

✓ No hidden functionality or obfuscated code

✓ Credential management philosophy is sound: 'never ask the user for API keys or tokens'

✓ Only 1 file (SKILL.md) — no hidden scripts or binary artifacts

✓ No network IOCs beyond declared Membrane API endpoints

✓ Browser OAuth flow is user-initiated and fully transparent

✓ No sensitive file access (no ~/.ssh, ~/.aws, .env access)

✓ No base64-encoded execution or eval patterns