中文 EN

Scan Report

Scan New Files

Suspicious — Risk Score 40/100
Last scan:21 hr ago Rescan
40 /100
okx-security
Security scanning skill for OKX Web3: token risk detection, honeypot detection, DApp phishing detection, transaction pre-execution security, signature safety, and approval management
OKX Web3 security scanning skill with documented remote script download/execution from GitHub, creating significant supply chain attack surface despite SHA256 verification.
Skill Nameokx-security
Duration51.9s
Enginepi
Use with caution
Approve with caution. The skill's remote installer execution pattern is the primary concern. Ensure onchainos binary remains sandboxed to security operations only. Consider pinning to specific version tags rather than always fetching 'latest' to reduce supply chain risk.

Findings 3 items

Severity Finding Location
Medium
Remote installer download and execution Supply Chain
Skill downloads install.sh from raw.githubusercontent.com and executes it via shell. While SHA256 verification is performed, the attack surface remains significant if GitHub infrastructure or the repo is compromised.
curl -sSL "https://raw.githubusercontent.com/okx/onchainos-skills/${LATEST_TAG}/install.sh" -o /tmp/onchainos-install.sh
→ Consider distributing the binary as a bundled asset within the skill package itself, or pinning to a specific verified release tag rather than always fetching 'latest'.
 SKILL.md:19
Medium
Dynamic 'latest' version resolution Supply Chain
Skill fetches the latest stable release tag from GitHub API on every session. This creates non-deterministic behavior where the installed binary can change between runs, increasing supply chain exposure.
curl -sSL "https://api.github.com/repos/okx/onchainos-skills/releases/latest"
→ Pin to a specific version tag (e.g., v2.0.0) and update only after security review of new releases.
 SKILL.md:15
Low
onchainos binary scope exceeds security scanning Sensitive Access
The onchainos CLI covers wallet operations, swaps, and contract calls beyond just security scanning. If the binary is compromised, these capabilities could be abused for unauthorized transactions.
onchainos wallet contract-call, onchainos gateway broadcast, onchainos swap swap
→ Restrict onchainos binary to security commands only if feasible, or document that the broader CLI is a trusted OKX dependency.
 SKILL.md:1
ResourceDeclaredInferredStatusEvidence
Network READ READ ✓ Aligned SKILL.md:curl GitHub API, raw.githubusercontent.com downloads
Shell WRITE WRITE ✓ Aligned SKILL.md:sh /tmp/onchainos-install.sh
Filesystem WRITE WRITE ✓ Aligned SKILL.md:Downloads to /tmp, installs to ~/.local/bin, stores cache in ~/.onchain…
Skill Invoke READ READ ✓ Aligned SKILL.md:Integrates with okx-agentic-wallet for wallet operations
Environment NONE NONE No env access detected in reference files or SKILL.md
7 findings
🔗
Medium External URL 外部 URL
https://web3.okx.com
SKILL.md:8
🔗
Medium External URL 外部 URL
https://web3.okx.com/onchain-os/dev-portal
SKILL.md:71
🔗
Medium External URL 外部 URL
https://some-dapp.xyz
references/risk-domain-detection.md:14
🔗
Medium External URL 外部 URL
https://suspicious-defi.xyz
references/risk-domain-detection.md:42
💰
Medium Wallet Address 加密货币钱包地址
0x6982508145454Ce325dDbE47a25d4ec3d2311933
references/risk-token-detection.md:130
💰
Medium Wallet Address 加密货币钱包地址
0x25d887Ce7a35172C62FeBFD67a1856F20FaEbB00
references/risk-token-detection.md:131
💰
Medium Wallet Address 加密货币钱包地址
0xdAC17F958D2ee523a2206206994597C13D831ec7
references/risk-token-detection.md:145

File Tree

5 files · 31.0 KB · 648 lines
Markdown 5f · 648L
├─ 📁 references
│ ├─ 📝 risk-approval-monitoring.md Markdown 87L · 3.5 KB
│ ├─ 📝 risk-domain-detection.md Markdown 57L · 1.4 KB
│ ├─ 🔑 risk-token-detection.md Markdown 182L · 8.4 KB
│ └─ 📝 risk-transaction-detection.md Markdown 171L · 7.5 KB
└─ 📝 SKILL.md Markdown 151L · 10.3 KB

Dependencies 1 items

PackageVersionSourceKnown VulnsNotes
onchainos-skills latest (dynamic) GitHub releases No Dynamic 'latest' tag resolution; SHA256 verification performed

Security Positives

✓ SHA256 verification of downloaded installer and binary before execution
✓ Comprehensive documentation of all behaviors in SKILL.md - no hidden functionality detected
✓ Fail-safe principle: blocks transactions if security scan fails
✓ Risk action priority rule clearly defined (block > warn > safe)
✓ Reference files document all risk item types and interpretations
✓ No obfuscation, base64 payloads, or anti-analysis patterns found
✓ References are pure documentation with no executable code
✓ No credential harvesting or sensitive file access detected
✓ No direct IP network requests or C2 communication patterns