Skill Trust Decision

子网计算服务

Name: 子网计算服务 Trust Review Report
Item: 子网计算服务
Rating: 55
Author: ClawSafe

子网计算工具收集用户API密钥并发送至外部商业服务，无本地恶意行为但凭证管理存在风险

Install decision first Source: ClawHub Scanned: 5 days ago

Files 6

Artifacts 2

Violations 0

Findings 3

Why this conclusion was reached

0/4 dimensions flagged

Pass

Declared vs actual capability

Declared resources and inferred behavior are broadly aligned.

Review

Hidden execution and egress

2 lower-risk artifacts were extracted and still need context.

Pass

Attack chain and severe findings

There is no explicit malicious chain in the report.

Review

Dependencies and supply chain hygiene

4 dependency or supply-chain issues need attention.

What drove the risk score up

用户凭证持久化 +15

通过set_api_key()将用户输入的API密钥保存到.env文件

依赖版本无锁定 +10

requirements.txt所有依赖使用>=版本范围，可能引入恶意更新

数据外传第三方 +10

子网查询数据通过HTTP POST发送至xiaobenyang.com

API密钥暴露传输 +10

XBY-APIKEY通过HTTP Header明文发送至外部API

Most important evidence

Medium Credential Theft

用户凭证持久化存储

通过AskUserQuestion获取用户API密钥后，使用config.py的set_api_key()将其保存到本地.env文件，存在凭证泄露风险

scripts/config.py:41

评估是否必须持久化凭证，或使用临时内存存储

Medium Supply Chain

依赖版本无锁定

requirements.txt所有依赖使用>=版本范围，允许自动升级可能引入恶意更新

requirements.txt:1

使用精确版本号如requests==2.31.0锁定依赖版本

Low Data Exfil

查询数据外传第三方

用户输入的IP地址和子网查询参数通过HTTP POST发送至xiaobenyang.com，数据可能被记录

scripts/call_api.py:62

确认外部服务隐私政策，评估是否需要自托管

Declared capability vs actual capability

Network Pass

Declared WRITE

→

Inferred WRITE

SKILL.md声明需调用外部API

Filesystem Pass

Declared WRITE

→

Inferred WRITE

config.py写入.env存储API密钥

Environment Pass

Declared READ

→

Inferred READ

config.py读取XBY_APIKEY环境变量

Suspicious artifacts and egress

Medium External URL

https://xiaobenyang.com

SKILL.md:19

Medium External URL

https://mcp.xiaobenyang.com

scripts/config.py:19

Dependencies and supply chain

Package	Version	Source	Known vuln	Notes
requests	`>=2.31.0`	pip	No	无版本锁定
pydantic	`>=2.7.0`	pip	No	无版本锁定
pydantic-settings	`>=2.2.0`	pip	No	无版本锁定
python-dotenv	`>=1.0.1`	pip	No	无版本锁定

File composition

6 files · 479 lines

Python 4 files · 333 linesMarkdown 1 files · 143 linesText 1 files · 3 lines

Files of concern · 4

SKILL.md Markdown · 143 lines

https://xiaobenyang.com

scripts/call_api.py Python · 115 lines

查询数据外传第三方

scripts/config.py Python · 92 lines

用户凭证持久化存储 · https://mcp.xiaobenyang.com

requirements.txt Text · 3 lines

依赖版本无锁定

Other files · tools.py · __init__.py

Security positives

代码结构清晰，无明显混淆或恶意编码

未发现反向shell、eval()、base64解码等高危模式

未访问敏感路径如~/.ssh、~/.aws等

工具函数功能与文档描述一致