biotech-pitch-deck-narrative 安全扫描报告 — 可信 | ClawSafe

5 /100

biotech-pitch-deck-narrative

Transforms complex biotechnology scientific data into compelling investor narratives for biotech fundraising presentations

Benign biotech pitch deck narrative generator with no malicious behavior detected. Pure Python using standard library only, no network access, no credential access, no shell execution despite tool declaration.

技能名称biotech-pitch-deck-narrative

分析耗时40.0s

引擎pi

✓

可以安装

This skill is safe to use. The minor mismatch between declared tools (Bash, Edit) and actual implementation does not pose a security risk.

安全发现 1 项

严重性	安全发现	位置
提示	Tool declaration mismatch 文档欺骗 SKILL.md declares 'Bash Edit' in allowed-tools but the implementation (scripts/main.py) only uses standard library Python with dataclasses, enum, argparse, json, re, and pathlib. No subprocess or shell execution is present. `allowed-tools: "Read Write Bash Edit"` → Update SKILL.md to reflect actual tool usage: 'Read Write' only. Declared tools should match implementation for accurate risk assessment.	`SKILL.md:1`

资源类型	声明权限	推断权限	状态	证据
文件系统	`WRITE`	`READ`	✓ 一致	Output only to specified --output path
网络访问	`NONE`	`NONE`	—	No network requests in code
命令执行	`WRITE`	`NONE`	✓ 一致	No subprocess or shell commands in scripts/main.py
环境变量	`NONE`	`NONE`	—	No os.environ access
技能调用	`NONE`	`NONE`	—	N/A
剪贴板	`NONE`	`NONE`	—	N/A
浏览器	`NONE`	`NONE`	—	N/A
数据库	`NONE`	`NONE`	—	N/A

目录结构

4 文件 · 22.6 KB · 644 行

Markdown 1f · 470L Python 1f · 161L JSON 1f · 11L Text 1f · 2L

├─ ▾ 📁 scripts

│ └─ 🐍 main.py Python 161L · 5.8 KB

├─ 📄 requirements.txt Text 2L · 17 B

├─ 📝 SKILL.md Markdown 470L · 16.4 KB

└─ 📋 tile.json JSON 11L · 344 B

依赖分析 6 项

包名	版本	来源	已知漏洞	备注
`dataclasses`	`stdlib`	python	否	Python standard library
`enum`	`stdlib`	python	否	Python standard library
`argparse`	`stdlib`	python	否	Python standard library
`json`	`stdlib`	python	否	Python standard library
`re`	`stdlib`	python	否	Python standard library
`pathlib`	`stdlib`	python	否	Python standard library

安全亮点

✓ No external network requests or API calls

✓ No credential or environment variable access

✓ No file system operations beyond specified output

✓ Uses only Python standard library (no external dependencies)

✓ No obfuscation, base64 encoding, or anti-analysis techniques

✓ No sensitive file path access (~/.ssh, ~/.aws, .env)

✓ No shell script execution despite declaration

✓ No data exfiltration or C2 communication patterns

✓ Clean, straightforward business logic implementation