中文 EN

扫描报告

扫描新文件

低风险 — 风险评分 10/100
上次扫描:1 天前 重新扫描
10 /100
pixiebrix
PixieBrix integration for managing Persons, Organizations, Deals, Leads, Projects, Activities and more via the Membrane CLI.
The skill is a pure documentation file describing a legitimate PixieBrix integration via the Membrane CLI, with no hidden functionality or malicious code — minor documentation gap is the sole concern.
技能名称pixiebrix
分析耗时36.3s
引擎pi
可以安装
Add an explicit allowed-tools declaration to SKILL.md to map the required shell:WRITE access for npm/membrane CLI commands.

安全发现 2 项

严重性 安全发现 位置
低危
Missing allowed-tools declaration 文档欺骗
The SKILL.md declares 'network access' in compatibility but does not declare shell:WRITE, despite requiring npm global installs and membrane CLI command execution. This is a minor documentation gap rather than malicious concealment, as the shell usage is fully visible in the documented commands.
compatibility: Requires network access and a valid Membrane account
→ Add an allowed-tools section explicitly listing shell:WRITE for npm/membrane CLI operations.
 SKILL.md:1
低危
Unrestricted API proxy via membrane request 数据外泄
The 'membrane request CONNECTION_ID /path/to/endpoint' feature allows arbitrary HTTP requests to the PixieBrix API through the user's Membrane connection. While documented, this could be abused to make outbound requests appearing to originate from the user's authenticated context. However, this is the intended design of the feature, not hidden behavior.
membrane request CONNECTION_ID /path/to/endpoint
→ This is by design. Consider adding a warning that users should only authorize connections from trusted sources.
 SKILL.md:78
资源类型声明权限推断权限状态证据
文件系统 NONE NONE No filesystem access found; npm -g install writes to system dirs but is standard…
网络访问 READ READ ✓ 一致 SKILL.md explicitly states 'Requires network access'; membrane request proxies A…
命令执行 NONE WRITE ✗ 越权 SKILL.md instructs npm install -g @membranehq/cli and multiple membrane CLI comm…
环境变量 NONE NONE No direct environment variable access observed
凭据访问 NONE NONE SKILL.md explicitly states 'never ask the user for API keys'; credentials manage…
2 项发现
🔗
中危 外部 URL 外部 URL
https://getmembrane.com
SKILL.md:7
🔗
中危 外部 URL 外部 URL
https://docs.pixiebrix.com/
SKILL.md:19

目录结构

1 文件 · 5.2 KB · 180 行
Markdown 1f · 180L
└─ 📝 SKILL.md Markdown 180L · 5.2 KB

安全亮点

✓ SKILL.md is a pure documentation file — no hidden code or scripts
✓ All shell commands are explicitly documented with full command syntax
✓ SKILL.md explicitly warns against asking for API keys — credentials managed server-side
✓ No credential harvesting, no environment variable iteration, no base64 or obfuscated payloads
✓ No remote script execution (curl|bash, wget|sh) detected
✓ No sensitive path access (~/.ssh, ~/.aws, .env) observed
✓ External URLs point to legitimate domains (getmembrane.com, docs.pixiebrix.com)
✓ The membrane request proxy feature is clearly documented, not hidden