devops-pipeline-management Security Report — Trusted | ClawSafe

5 /100

devops-pipeline-management

DevOps pipeline management skill for CI/CD pipeline lifecycle management

This is a legitimate DevOps pipeline management skill that provides CRUD operations for CI/CD pipelines through documented REST API calls to an internal DevOps platform.

Skill Namedevops-pipeline-management

Duration56.8s

Enginepi

✓

Safe to install

This skill is safe to use. No security concerns identified.

Resource	Declared	Inferred	Status	Evidence
Network	`READ`	`READ`	✓ Aligned	scripts/client.py:26 - uses requests.Session for API calls to one-dev.iflytek.co…
Filesystem	`NONE`	`READ`	✓ Aligned	scripts/main.py:172 - reads local JSON config files via --file parameter
Shell	`NONE`	`NONE`	—	No shell execution commands found
Environment	`READ`	`READ`	✓ Aligned	scripts/client.py:18 - reads DEVOPS_DOMAIN_ACCOUNT, DEVOPS_BFF_URL
Skill Invoke	`NONE`	`NONE`	—	No skill invocation capability found
Clipboard	`NONE`	`NONE`	—	No clipboard access found
Browser	`NONE`	`NONE`	—	No browser automation found
Database	`NONE`	`NONE`	—	No direct database access found

31 findings

🔗

Medium External URL 外部 URL

https://one-dev.iflytek.com/devops

README.md:11

🔗

Medium External URL 外部 URL

https://one-dev.iflytek.com/devops/api/ai-bff/rest/openapi/pipeline/runByManual

SKILL.md:585

🔗

Medium External URL 外部 URL

https://code.iflytek.com/demo/frontend-app

references/pipeline/01-pipeline-data-structure.md:457

🔗

Medium External URL 外部 URL

https://code.iflytek.com/myteam/my-java-app

references/pipeline/examples/create-full-pipeline.md:58

🔗

Medium External URL 外部 URL

https://code.iflytek.com/team/repo

references/pipeline/examples/quick-reference.md:37

🔗

Medium External URL 外部 URL

https://code.iflytek.com/demo/my-app

references/pipeline/openapi/02-source-api.md:22

🔗

Medium External URL 外部 URL

https://code.iflytek.com/team/frontend-app

references/pipeline/openapi/06-execute-pipeline-api.md:70

🔗

Medium External URL 外部 URL

http://jenkins.example.com/job/order-service-build/10/

references/pipeline/openapi/06-execute-pipeline-api.md:294

🔗

Medium External URL 外部 URL

https://registry.npmmirror.com

references/pipeline/pipeline-baseinfo-schema.md:307

🔗

Medium External URL 外部 URL

http://json-schema.org/draft-07/schema#

references/pipeline/schemas/all-tasks/artifact-promotion.schema.json:2

🔗

Medium External URL 外部 URL

https://depend.iflytek.com/artifactory/api/npm/npm-repo\nnpm

references/pipeline/schemas/all-tasks/npm-build.schema.json:62

🔗

Medium External URL 外部 URL

https://api.example.com/rest/openapi/pipeline/cancel

references/pipeline-cancel.md:83

🔗

Medium External URL 外部 URL

https://gitee.com/team/my-project.git

references/pipeline-create.md:219

🔗

Medium External URL 外部 URL

https://gitlab.example.com/order/service.git

references/pipeline-detail.md:58

🔗

Medium External URL 外部 URL

https://gitlab.example.com/repo.git

references/pipeline-list.md:62

🔗

Medium External URL 外部 URL

http://jenkins/job/...

references/pipeline-list.md:204

🔗

Medium External URL 外部 URL

https://api.example.com/rest/openapi/pipeline/getPipelineWorkById?pipelineLogId=10001

references/pipeline-run-detail.md:215

🔗

Medium External URL 外部 URL

https://gitee.com/team/repo

references/pipeline-run.md:129

🔗

Medium External URL 外部 URL

https://one-dev.iflytek.com/cloud-work/devops/web-devops-application/flow/detail?pipelineId=

references/pipeline-run.md:444

🔗

Medium External URL 外部 URL

https://one-dev.iflytek.com/cloud-work/devops/web-devops-application/flow/detail?pipelineId=25aa4b5ff23045fba4b6f2b7c162...

references/pipeline-run.md:471

🔗

Medium External URL 外部 URL

https://sonar.example.com

references/pipeline-task-add.md:528

💰

Medium Wallet Address 加密货币钱包地址

12c79673aa254bd497a5d841d5ff83c2

references/template-to-pipeline.md:69

🔗

Medium External URL 外部 URL

https://helm.example.com

references/workspace-list.md:154

🔗

Medium External URL 外部 URL

https://gitee.com/example/

scripts/create_pipeline_with_source.py:150

🔗

Medium External URL 外部 URL

https://gitlab.com/example/

scripts/create_pipeline_with_source.py:152

🔗

Medium External URL 外部 URL

https://code.iflytek.com/example/

scripts/create_pipeline_with_source.py:154

🔗

Medium External URL 外部 URL

https://one-dev.iflytek.com/devops\

scripts/main.py:120

🔗

Medium External URL 外部 URL

https://one-dev.iflytek.com/api/ai-bff

scripts/pipeline_create_v2.py:76

🔗

Medium External URL 外部 URL

https://one-dev.iflytek.com/cloud-work/devops/web-devops-application

scripts/pipeline_create_v2.py:76

🔗

Medium External URL 外部 URL

https://gitee.com/example/my-java-app

scripts/pipeline_create_v2.py:452

📧

Info Email 邮箱地址

[email protected]

README.md:10

File Tree

97 files · 690.2 KB · 22579 lines

Markdown 39f · 14426L Python 13f · 4646L JSON 43f · 3501L Text 2f · 6L

├─ ▾ 📁 assets

│ └─ 📝 README.md Markdown 1L · 14 B

├─ ▾ 📁 references

│ ├─ ▾ 📁 pipeline

│ │ ├─ ▾ 📁 examples

│ │ │ ├─ 📝 create-full-pipeline.md Markdown 414L · 7.9 KB

│ │ │ ├─ 📝 create-template.md Markdown 227L · 5.0 KB

│ │ │ └─ 📝 quick-reference.md Markdown 410L · 8.1 KB

│ │ ├─ ▾ 📁 openapi

│ │ │ ├─ 📝 00-api-overview.md Markdown 133L · 3.1 KB

│ │ │ ├─ 📝 01-pipeline-api.md Markdown 632L · 13.7 KB

│ │ │ ├─ 📝 02-source-api.md Markdown 213L · 4.4 KB

│ │ │ ├─ 📝 03-task-api.md Markdown 11L · 238 B

│ │ │ ├─ 📝 04-template-api.md Markdown 311L · 5.4 KB

│ │ │ ├─ 📝 05-field-enums.md Markdown 246L · 4.3 KB

│ │ │ ├─ 📝 06-execute-pipeline-api.md Markdown 1477L · 36.9 KB

│ │ │ ├─ 📝 07-api-list.md Markdown 133L · 3.7 KB

│ │ │ ├─ 📝 07-new-apis.md Markdown 608L · 14.4 KB

│ │ │ └─ 📝 08-template-to-pipeline.md Markdown 542L · 13.2 KB

│ │ ├─ ▾ 📁 schemas

│ │ │ ├─ ▾ 📁 all-tasks

│ │ │ │ ├─ 📋 artifact-promotion.schema.json JSON 65L · 1.5 KB

│ │ │ │ ├─ 📋 channel-build.schema.json JSON 84L · 1.9 KB

│ │ │ │ ├─ 📋 cloud-helm-deploy.schema.json JSON 73L · 1.6 KB

│ │ │ │ ├─ 📋 code-cover-collect.schema.json JSON 77L · 1.8 KB

│ │ │ │ ├─ 📋 code-cover-inst.schema.json JSON 69L · 1.6 KB

│ │ │ │ ├─ 📋 cpp-build.schema.json JSON 104L · 3.2 KB

│ │ │ │ ├─ 📋 cpp-docker-build.schema.json JSON 100L · 3.9 KB

│ │ │ │ ├─ 📋 create-git-tag.schema.json JSON 62L · 1.4 KB

│ │ │ │ ├─ 📋 docker-build.schema.json JSON 89L · 2.1 KB

│ │ │ │ ├─ 📋 excute-plan.schema.json JSON 65L · 1.4 KB

│ │ │ │ ├─ 📋 git-merge-request.schema.json JSON 76L · 1.7 KB

│ │ │ │ ├─ 📋 git-merge.schema.json JSON 76L · 1.7 KB

│ │ │ │ ├─ 📋 go-build.schema.json JSON 104L · 3.2 KB

│ │ │ │ ├─ 📋 go-docker-build.schema.json JSON 110L · 4.3 KB

│ │ │ │ ├─ 📋 gradle-build.schema.json JSON 106L · 3.4 KB

│ │ │ │ ├─ 📋 gradle-docker-build.schema.json JSON 121L · 4.7 KB

│ │ │ │ ├─ 📋 host-deploy.schema.json JSON 70L · 1.6 KB

│ │ │ │ ├─ 📋 host-docker-deploy.schema.json JSON 109L · 2.4 KB

│ │ │ │ ├─ 📋 manual-review.schema.json JSON 63L · 1.4 KB

│ │ │ │ ├─ 📋 maven-build.schema.json JSON 111L · 3.7 KB

│ │ │ │ ├─ 📋 maven-docker-build.schema.json JSON 122L · 4.8 KB

│ │ │ │ ├─ 📋 npm-build.schema.json JSON 109L · 3.7 KB

│ │ │ │ ├─ 📋 npm-docker-build.schema.json JSON 120L · 4.8 KB

│ │ │ │ ├─ 📋 order-action.schema.json JSON 61L · 1.3 KB

│ │ │ │ ├─ 📋 product-distribution.schema.json JSON 64L · 1.5 KB

│ │ │ │ ├─ 📋 python-build.schema.json JSON 99L · 3.1 KB

│ │ │ │ ├─ 📋 python-docker-build.schema.json JSON 110L · 4.4 KB

│ │ │ │ ├─ 📋 sae-deploy.schema.json JSON 66L · 1.4 KB

│ │ │ │ ├─ 📋 sae-helm.schema.json JSON 64L · 1.4 KB

│ │ │ │ ├─ 📋 sae-image-update.schema.json JSON 65L · 1.4 KB

│ │ │ │ ├─ 📋 sca-binary-scan.schema.json JSON 56L · 1.3 KB

│ │ │ │ ├─ 📋 sca-code-scan.schema.json JSON 74L · 1.7 KB

│ │ │ │ ├─ 📋 sec-code-scan.schema.json JSON 66L · 1.5 KB

│ │ │ │ ├─ 📋 sonar-qube.schema.json JSON 64L · 1.4 KB

│ │ │ │ ├─ 📋 upload-chart.schema.json JSON 64L · 1.4 KB

│ │ │ │ └─ 📋 yaml-deploy.schema.json JSON 56L · 1.2 KB

│ │ │ ├─ 📋 pipeline.schema.json JSON 48L · 1.0 KB

│ │ │ ├─ 📋 run-pipeline.schema.json JSON 179L · 4.6 KB

│ │ │ ├─ 📋 source.schema.json JSON 115L · 2.8 KB

│ │ │ ├─ 📋 stage.schema.json JSON 34L · 754 B

│ │ │ ├─ 📋 step.schema.json JSON 40L · 911 B

│ │ │ ├─ 📋 task-data.schema.json JSON 63L · 1.6 KB

│ │ │ └─ 📋 task.schema.json JSON 28L · 648 B

│ │ ├─ ▾ 📁 tasklist

│ │ │ ├─ 📝 00-task-catalog.md Markdown 162L · 6.3 KB

│ │ │ ├─ 📝 03-common-fields.md Markdown 168L · 4.8 KB

│ │ │ └─ 📝 03-validate-rules.md Markdown 244L · 6.4 KB

│ │ ├─ 📝 01-pipeline-data-structure.md Markdown 530L · 12.8 KB

│ │ ├─ 📝 02-pipeline-template-data-structure.md Markdown 492L · 11.7 KB

│ │ ├─ 📝 pipeline-baseinfo-schema.md Markdown 557L · 15.2 KB

│ │ └─ 📝 README.md Markdown 64L · 2.4 KB

│ ├─ 📝 excute-pipeline-logic.md Markdown 562L · 24.3 KB

│ ├─ 📝 pipeline-cancel.md Markdown 94L · 1.9 KB

│ ├─ 📝 pipeline-create.md Markdown 639L · 20.6 KB

│ ├─ 📝 pipeline-delete.md Markdown 78L · 1.8 KB

│ ├─ 📝 pipeline-detail.md Markdown 121L · 2.9 KB

│ ├─ 📝 pipeline-list.md Markdown 305L · 9.9 KB

│ ├─ 📝 pipeline-page.md Markdown 238L · 6.8 KB

│ ├─ 📝 pipeline-run-detail.md Markdown 305L · 10.2 KB

│ ├─ 📝 pipeline-run.md Markdown 520L · 19.3 KB

│ ├─ 📝 pipeline-task-add.md Markdown 555L · 21.1 KB

│ ├─ 📝 pipeline-task-delete.md Markdown 306L · 12.8 KB

│ ├─ 📝 pipeline-task-update.md Markdown 361L · 14.6 KB

│ ├─ 📝 pipeline-template.md Markdown 258L · 7.6 KB

│ ├─ 📝 pipeline-update.md Markdown 616L · 22.0 KB

│ ├─ 📝 template-to-pipeline.md Markdown 829L · 26.2 KB

│ └─ 📝 workspace-list.md Markdown 266L · 7.8 KB

├─ ▾ 📁 scripts

│ ├─ 🐍 __init__.py Python 64L · 1.7 KB

│ ├─ 🐍 client.py Python 81L · 2.9 KB

│ ├─ 🐍 create_pipeline_with_source.py Python 363L · 13.5 KB

│ ├─ 🐍 execution_ops.py Python 434L · 14.7 KB

│ ├─ 🐍 interactive_run.py Python 646L · 27.8 KB

│ ├─ 🐍 interactive_update.py Python 348L · 14.5 KB

│ ├─ 🐍 interactive.py Python 598L · 20.9 KB

│ ├─ 🐍 main.py Python 429L · 17.6 KB

│ ├─ 🐍 pipeline_create_v2.py Python 754L · 28.1 KB

│ ├─ 🐍 pipeline_ops.py Python 471L · 15.4 KB

│ ├─ 🐍 run_pipeline.py Python 227L · 10.2 KB

│ ├─ 🐍 template_ops.py Python 137L · 4.5 KB

│ └─ 🐍 utils.py Python 94L · 2.7 KB

├─ 📝 README.md Markdown 147L · 4.0 KB

├─ 📄 requirements-dev.txt Text 4L · 85 B

├─ 📄 requirements.txt Text 2L · 59 B

└─ 📝 SKILL.md Markdown 651L · 24.4 KB

Dependencies 1 items

Package	Version	Source	Known Vulns	Notes
`requests`	`>=2.25.0`	pip	No	Standard HTTP library with no critical vulnerabilities

Security Positives

✓ Clean codebase with no shell execution capabilities

✓ All network requests target a single documented internal DevOps platform endpoint

✓ No credential harvesting or exfiltration patterns detected

✓ Environment variable access is limited to documented API authentication variables

✓ No obfuscation or anti-analysis techniques observed

✓ File operations limited to reading local JSON config files for pipeline definitions

✓ Uses well-established requests library for HTTP communication

✓ Comprehensive documentation with SKILL.md covering all functionality

✓ No sensitive path access (no ~/.ssh, ~/.aws, .env enumeration)

✓ No remote code execution or script download patterns (no curl|bash, wget|sh)

Scan Report

File Tree

Dependencies 1 items

Security Positives