中文 EN

扫描报告

扫描新文件

低风险 — 风险评分 18/100
上次扫描:1 天前 重新扫描
18 /100
flyai-persuade-ta
旅行提案生成器,帮用户生成一份用真实数据说服伴侣/老板/爸妈/朋友的旅行方案
This travel proposal generator skill presents minimal security risk with only minor operational security concerns around SSL bypass practices and unpinned dependencies.
技能名称flyai-persuade-ta
分析耗时42.7s
引擎pi
可以安装
Consider documenting the NODE_TLS_REJECT_UNAUTHORIZED=0 security trade-off and pinning the CLI version for production use.

安全发现 3 项

严重性 安全发现 位置
中危
SSL Certificate Verification Disabled 敏感访问
All FlyAI commands use NODE_TLS_REJECT_UNAUTHORIZED=0 to bypass TLS verification, making traffic vulnerable to man-in-the-middle attacks. This is not prominently documented as a security consideration.
⚠️ **重要**:所有命令需加 `NODE_TLS_REJECT_UNAUTHORIZED=0` 前缀绕过 SSL 验证
→ Document this as an explicit security trade-off and consider using proper certificate configuration or self-signed cert management.
 reference/flyai-commands.md:3
低危
Unpinned npm Dependency 供应链
The skill instructs installing @fly-ai/flyai-cli@latest without version pinning, which could lead to unexpected behavior if the package is updated.
npm install -g @fly-ai/flyai-cli@latest
→ Pin to a specific version (e.g., @fly-ai/[email protected]) after initial installation and version verification.
 SKILL.md:142
低危
Home Directory File Access 敏感访问
The skill reads and writes user preferences to ~/.flyai/user-profile.md, accessing the user's home directory.
~/.flyai/user-profile.md
→ This is legitimate for the feature. Ensure the file permissions are appropriate and no sensitive credentials are stored there.
 reference/user-profile-storage.md:42
资源类型声明权限推断权限状态证据
文件系统 READ WRITE ✓ 一致 SKILL.md line 187 - create_file tool mentioned
网络访问 READ READ ✓ 一致 FlyAI CLI commands in SKILL.md line 150-166
命令执行 WRITE WRITE ✓ 一致 npm install and flyai commands in SKILL.md line 141-144
环境变量 NONE NONE No os.environ access found
技能调用 READ READ ✓ 一致 search_memory/update_memory tools
剪贴板 NONE NONE No clipboard access found
浏览器 NONE NONE No browser automation found
数据库 NONE NONE No database access found
4 项发现
🔗
中危 外部 URL 外部 URL
https://nodejs.org/
SKILL.md:143
🔗
中危 外部 URL 外部 URL
https://registry.npmmirror.com
SKILL.md:145
🔗
中危 外部 URL 外部 URL
https://img.alicdn.com/...
reference/references/search-hotel.md:44
🔗
中危 外部 URL 外部 URL
https://img.alicdn.com/tfscom/...
reference/references/search-poi.md:32

目录结构

16 文件 · 47.2 KB · 1613 行
Markdown 16f · 1613L
├─ 📁 reference
│ ├─ 📁 references
│ │ ├─ 📝 ai-search.md Markdown 26L · 659 B
│ │ ├─ 📝 keyword-search.md Markdown 53L · 1.6 KB
│ │ ├─ 📝 search-flight.md Markdown 87L · 3.0 KB
│ │ ├─ 📝 search-hotel.md Markdown 57L · 1.8 KB
│ │ ├─ 📝 search-marriott-hotel.md Markdown 54L · 1.8 KB
│ │ ├─ 📝 search-marriott-package.md Markdown 40L · 995 B
│ │ ├─ 📝 search-poi.md Markdown 47L · 2.2 KB
│ │ └─ 📝 search-train.md Markdown 77L · 2.6 KB
│ ├─ 📝 flyai-commands.md Markdown 163L · 4.2 KB
│ ├─ 📝 persuasion-templates.md Markdown 431L · 13.3 KB
│ ├─ 📝 scenario-templates.md Markdown 56L · 1.3 KB
│ ├─ 📝 self-learning.md Markdown 19L · 450 B
│ ├─ 📝 tools.md Markdown 34L · 782 B
│ ├─ 📝 user-profile-storage.md Markdown 187L · 4.1 KB
│ └─ 📝 value-proposition.md Markdown 14L · 429 B
└─ 📝 SKILL.md Markdown 268L · 8.3 KB

依赖分析 1 项

包名版本来源已知漏洞备注
@fly-ai/flyai-cli latest npm Version not pinned - supply chain risk

安全亮点

✓ No credential harvesting or token theft observed
✓ No base64-encoded or obfuscated code found
✓ No network requests to suspicious external IPs
✓ No ~/.ssh, ~/.aws, or .env file access
✓ No reverse shell, C2, or data exfiltration behavior
✓ No subprocess execution beyond declared FlyAI CLI tool
✓ No hidden functionality - all features are documented
✓ No prompt injection or jailbreak instructions