中文 EN

Scan Report

Scan New Files

Low Risk — Risk Score 18/100
Last scan:1 day ago Rescan
18 /100
flyai-persuade-ta
旅行提案生成器,帮用户生成一份用真实数据说服伴侣/老板/爸妈/朋友的旅行方案
This travel proposal generator skill presents minimal security risk with only minor operational security concerns around SSL bypass practices and unpinned dependencies.
Skill Nameflyai-persuade-ta
Duration42.7s
Enginepi
Safe to install
Consider documenting the NODE_TLS_REJECT_UNAUTHORIZED=0 security trade-off and pinning the CLI version for production use.

Findings 3 items

Severity Finding Location
Medium
SSL Certificate Verification Disabled Sensitive Access
All FlyAI commands use NODE_TLS_REJECT_UNAUTHORIZED=0 to bypass TLS verification, making traffic vulnerable to man-in-the-middle attacks. This is not prominently documented as a security consideration.
⚠️ **重要**:所有命令需加 `NODE_TLS_REJECT_UNAUTHORIZED=0` 前缀绕过 SSL 验证
→ Document this as an explicit security trade-off and consider using proper certificate configuration or self-signed cert management.
 reference/flyai-commands.md:3
Low
Unpinned npm Dependency Supply Chain
The skill instructs installing @fly-ai/flyai-cli@latest without version pinning, which could lead to unexpected behavior if the package is updated.
npm install -g @fly-ai/flyai-cli@latest
→ Pin to a specific version (e.g., @fly-ai/[email protected]) after initial installation and version verification.
 SKILL.md:142
Low
Home Directory File Access Sensitive Access
The skill reads and writes user preferences to ~/.flyai/user-profile.md, accessing the user's home directory.
~/.flyai/user-profile.md
→ This is legitimate for the feature. Ensure the file permissions are appropriate and no sensitive credentials are stored there.
 reference/user-profile-storage.md:42
ResourceDeclaredInferredStatusEvidence
Filesystem READ WRITE ✓ Aligned SKILL.md line 187 - create_file tool mentioned
Network READ READ ✓ Aligned FlyAI CLI commands in SKILL.md line 150-166
Shell WRITE WRITE ✓ Aligned npm install and flyai commands in SKILL.md line 141-144
Environment NONE NONE No os.environ access found
Skill Invoke READ READ ✓ Aligned search_memory/update_memory tools
Clipboard NONE NONE No clipboard access found
Browser NONE NONE No browser automation found
Database NONE NONE No database access found
4 findings
🔗
Medium External URL 外部 URL
https://nodejs.org/
SKILL.md:143
🔗
Medium External URL 外部 URL
https://registry.npmmirror.com
SKILL.md:145
🔗
Medium External URL 外部 URL
https://img.alicdn.com/...
reference/references/search-hotel.md:44
🔗
Medium External URL 外部 URL
https://img.alicdn.com/tfscom/...
reference/references/search-poi.md:32

File Tree

16 files · 47.2 KB · 1613 lines
Markdown 16f · 1613L
├─ 📁 reference
│ ├─ 📁 references
│ │ ├─ 📝 ai-search.md Markdown 26L · 659 B
│ │ ├─ 📝 keyword-search.md Markdown 53L · 1.6 KB
│ │ ├─ 📝 search-flight.md Markdown 87L · 3.0 KB
│ │ ├─ 📝 search-hotel.md Markdown 57L · 1.8 KB
│ │ ├─ 📝 search-marriott-hotel.md Markdown 54L · 1.8 KB
│ │ ├─ 📝 search-marriott-package.md Markdown 40L · 995 B
│ │ ├─ 📝 search-poi.md Markdown 47L · 2.2 KB
│ │ └─ 📝 search-train.md Markdown 77L · 2.6 KB
│ ├─ 📝 flyai-commands.md Markdown 163L · 4.2 KB
│ ├─ 📝 persuasion-templates.md Markdown 431L · 13.3 KB
│ ├─ 📝 scenario-templates.md Markdown 56L · 1.3 KB
│ ├─ 📝 self-learning.md Markdown 19L · 450 B
│ ├─ 📝 tools.md Markdown 34L · 782 B
│ ├─ 📝 user-profile-storage.md Markdown 187L · 4.1 KB
│ └─ 📝 value-proposition.md Markdown 14L · 429 B
└─ 📝 SKILL.md Markdown 268L · 8.3 KB

Dependencies 1 items

PackageVersionSourceKnown VulnsNotes
@fly-ai/flyai-cli latest npm No Version not pinned - supply chain risk

Security Positives

✓ No credential harvesting or token theft observed
✓ No base64-encoded or obfuscated code found
✓ No network requests to suspicious external IPs
✓ No ~/.ssh, ~/.aws, or .env file access
✓ No reverse shell, C2, or data exfiltration behavior
✓ No subprocess execution beyond declared FlyAI CLI tool
✓ No hidden functionality - all features are documented
✓ No prompt injection or jailbreak instructions