扫描报告
40 /100
pumpclaw-agent
Generate customer-ready Telegram polling bots + Express-style web server integrating Pump.fun Tokenized Agent payments
The skill generates a legitimate Telegram+web payment template but contains an undocumented deposit-wallet pattern that stores private keys in SQLite, plus unused treasury keypair code creating shadow surface.
谨慎使用
Add explicit documentation for deposit wallet private key storage, remove unused treasury keypair code, and consider encrypting SQLite or using a hardware security module for key storage.
安全发现 4 项
| 严重性 | 安全发现 | 位置 |
|---|---|---|
| 中危 | Deposit wallet private keys stored in plaintext SQLite 敏感访问 | assets/template/src/server.js:77 |
| 中危 | Unused treasury keypair created from environment secret 文档欺骗 | assets/template/src/server.js:40 |
| 中危 | Transaction signing not declared in SKILL.md 文档欺骗 | assets/template/src/server.js:116 |
| 低危 | Native module dependency without explicit security controls 供应链 | assets/template/package.json:12 |
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | WRITE | WRITE | ✓ 一致 | SKILL.md stamps assets/template/ to customer folder |
| 命令执行 | WRITE | WRITE | ✓ 一致 | scripts/stamp_template.sh uses tar/bash |
| 网络访问 | READ | READ | ✓ 一致 | Solana RPC URL for payment verification |
| 数据库 | WRITE | WRITE | ✓ 一致 | better-sqlite3 stores deposit wallets and balances |
| 技能调用 | NONE | NONE | — | Skill generates project; doesn't execute template |
| 凭证窃取 | NONE | WRITE | ✗ 越权 | deposit_secret_b58 stored in SQLite without encryption |
10 项发现
中危 外部 URL 外部 URL
http://127.0.0.1:3033 assets/template/README-FAST.md:4 中危 外部 URL 外部 URL
http://127.0.0.1:3033/health assets/template/README.md:19 中危 外部 URL 外部 URL
https://opencollective.com/fastify assets/template/package-lock.json:111 中危 外部 URL 外部 URL
https://paulmillr.com/funding/ assets/template/package-lock.json:275 中危 外部 URL 外部 URL
https://www.patreon.com/feross assets/template/package-lock.json:758 中危 外部 URL 外部 URL
https://feross.org/support assets/template/package-lock.json:762 中危 外部 URL 外部 URL
https://opencollective.com/express assets/template/package-lock.json:987 中危 外部 URL 外部 URL
https://dotenvx.com assets/template/package-lock.json:1079 中危 钱包地址 加密货币钱包地址
3j5fMGzUMCxWBJ3dV3a7Wz8y2f assets/template/package-lock.json:1141 中危 外部 URL 外部 URL
https://paypal.me/kozjak assets/template/package-lock.json:1768 目录结构
11 文件 · 114.6 KB · 3298 行 JSON 2f · 2239L
JavaScript 4f · 858L
Markdown 4f · 160L
Shell 1f · 41L
├─
▾
assets
│ └─
▾
template
│ ├─
▾
src
│ │ ├─
server.cjs
JavaScript
│ │ ├─
server.js
JavaScript
│ │ ├─
standalone-telegram.cjs
JavaScript
│ │ └─
telegram-bot.cjs
JavaScript
│ ├─
package-lock.json
JSON
│ ├─
package.json
JSON
│ ├─
README-FAST.md
Markdown
│ └─
README.md
Markdown
├─
▾
references
│ └─
PUMP_TOKENIZED_AGENTS.md
⚠
Markdown
├─
▾
scripts
│ └─
stamp_template.sh
Shell
└─
SKILL.md
Markdown
依赖分析 6 项
| 包名 | 版本 | 来源 | 已知漏洞 | 备注 |
|---|---|---|---|---|
@pump-fun/agent-payments-sdk | 3.0.0 | npm | 否 | Major version only; supply chain risk for SDK |
@solana/web3.js | ^1.98.0 | npm | 否 | Pinned to major version |
better-sqlite3 | ^12.6.2 | npm | 否 | Native module; database contains plaintext private keys |
fastify | ^5.8.2 | npm | 否 | Pinned to major version |
grammy | ^1.41.1 | npm | 否 | Pinned to major version |
zod | ^4.3.6 | npm | 否 | Pinned to major version |
安全亮点
✓ Server binds exclusively to 127.0.0.1, preventing remote access
✓ All endpoints except /health require API token authentication
✓ No credential exfiltration or C2 communication detected
✓ No obfuscation, base64 execution, or suspicious download patterns
✓ Rate limiting registered on Fastify (60 req/min)
✓ Input validation using Zod schemas on all endpoints
✓ No remote script execution (curl|bash, wget|sh)
✓ stamp_template.sh uses safe tar copy with no arbitrary command injection
✓ Skill generates templates without executing them, limiting direct attack surface