中文 EN

Scan Report

Scan New Files

Low Risk — Risk Score 5/100
Last scan:2 days ago Rescan
5 /100
bankofbots
Trust layer for agentic commerce. Build a BOB Score from on-chain payment proofs and x402 receipts, then borrow USDC credit lines based on your score. Non-custodial — BOB never holds your funds.
This is a documentation-only skill (SKILL.md + reference docs) with no executable code or scripts. All behavior is described transparently in SKILL.md.
Skill Namebankofbots
Duration30.2s
Enginepi
Safe to install
No immediate action needed. The skill is safe to use as a reference layer for the `bob` CLI. Monitor `BOB_API_KEY` usage and operator inbox commands for unexpected behavior at runtime.

Findings 2 items

Severity Finding Location
Low
Environment variables declared but values not scoped
SKILL.md metadata declares BOB_API_KEY and BOB_AGENT_ID as required. While documented, these are sensitive credentials that the bob CLI uses for all API calls. No scope limitation is specified.
requires:{"env":["BOB_API_KEY","BOB_AGENT_ID"]}
→ Ensure BOB_API_KEY is scoped to the minimum required permissions in the BOB dashboard.
 SKILL.md:8
Low
Operator inbox commands not pre-validated
bob inbox check processes pending operator commands including 'wallet.provision' and future types like 'transfer.request', 'loan.accept', 'kill_switch', 'key.rotate'. Commands are processed at runtime without pre-scan validation.
Future: transfer.request, loan.accept, kill_switch, key.rotate
→ Review operator commands in the BOB dashboard before deployment. Ensure operator is trusted.
 SKILL.md:262
ResourceDeclaredInferredStatusEvidence
Filesystem NONE NONE No filesystem access declared or inferred; all markdown files only
Network READ READ ✓ Aligned SKILL.md:85 — production API https://api.bankofbots.ai/api/v1
Shell NONE NONE No shell commands in markdown; describes bob CLI invocations only
Environment READ READ ✓ Aligned SKILL.md metadata — requires BOB_API_KEY, BOB_AGENT_ID; optional BOB_API_URL
Skill Invoke NONE NONE No skill-to-skill invocations described
Clipboard NONE NONE Not referenced in any file
Browser NONE NONE Not referenced in any file
Database NONE NONE Not referenced in any file
6 findings
🔗
Medium External URL 外部 URL
https://bankofbots.ai
README.md:45
🔗
Medium External URL 外部 URL
https://api.bankofbots.ai/docs
README.md:47
🔗
Medium External URL 外部 URL
https://bankofbots.ai/docs/agent-setup
README.md:48
🔗
Medium External URL 外部 URL
https://www.npmjs.com/package/@bankofbots/skill
README.md:49
🔗
Medium External URL 外部 URL
https://api.bankofbots.ai/api/v1
SKILL.md:85
🔗
Medium External URL 外部 URL
https://api.merchant.com/v1/chat
SKILL.md:251

File Tree

6 files · 27.5 KB · 779 lines
Markdown 6f · 779L
├─ 📁 references
│ ├─ 📝 commands.md Markdown 97L · 3.1 KB
│ ├─ 📝 errors.md Markdown 36L · 1.3 KB
│ ├─ 📝 proofs.md Markdown 115L · 4.5 KB
│ └─ 📝 scoring.md Markdown 55L · 2.1 KB
├─ 📝 README.md Markdown 51L · 1.4 KB
└─ 📝 SKILL.md Markdown 425L · 15.2 KB

Security Positives

✓ No executable scripts — this is a documentation-only package (markdown files only)
✓ No base64-encoded payloads or obfuscated code detected
✓ All behavior is fully described in SKILL.md with no hidden functionality
✓ No filesystem writes, no credential harvesting patterns, no remote script execution
✓ Wallet key generation is documented as client-side (local keyring), not exfiltrated
✓ Consistent doc-to-code alignment — what is described is what is delivered
✓ Loan repayment and fund transfers are documented as on-chain operations (verifiable on public ledger)