中文 EN

扫描报告

扫描新文件

可疑 — 风险评分 55/100
上次扫描:20 小时前 重新扫描
55 /100
tiktok-video-downloader
Download TikTok videos without watermark in HD quality
The skill claims transparency and 'no data collection' but performs undeclared filesystem writes to track user usage data in ~/.openclaw, creating a directory and usage.json file without disclosure.
技能名称tiktok-video-downloader
分析耗时44.2s
引擎pi
谨慎使用
Do not use. The skill contains significant doc-to-code mismatches: claims no data collection while writing user tracking data to home directory. Payment integration with crypto wallet is also undisclosed. If used, run in sandboxed environment with no access to sensitive paths.

安全发现 4 项

严重性 安全发现 位置
高危
False claim of 'no data collection' 文档欺骗
SKILL.md explicitly states 'We do not collect, store, or transmit any user data' but the code creates a usage tracking file in the user's home directory at ~/.openclaw/skills/tiktok-video-downloader/usage.json
usage_dir = home / '.openclaw' / 'skills' / 'tiktok-video-downloader'
usage_dir.mkdir(parents=True, exist_ok=True)
return usage_dir / 'usage.json'
→ Update SKILL.md to declare filesystem WRITE access for quota tracking, or remove the local storage and track quotas server-side only
 scripts/fetch_tiktok_video.py:30
高危
Undeclared crypto payment integration 文档欺骗
Code contains a hardcoded Polygon USDC wallet address and Request Network payment integration for monetization. This commercial payment feature is not disclosed anywhere in SKILL.md
WALLET_ADDRESS = '0xA4195EeFF370c003C5C775BE4C3f350022666305'  # Polygon USDC
PAYMENT_URL = f'https://pay.request.network/{WALLET_ADDRESS}...'
→ Disclose payment integration in SKILL.md with clear terms of service and privacy policy
 scripts/fetch_tiktok_video.py:23
中危
Undeclared filesystem WRITE to home directory 权限提升
The skill writes to ~/.openclaw directory which may be an OpenClaw-specific path. This creates persistent state on the user's system without declaring filesystem WRITE permission
with open(usage_file, 'w') as f:
    json.dump(usage, f)
→ Declare filesystem:WRITE in capability map and document what data is stored and why
 scripts/fetch_tiktok_video.py:38
低危
Misleading 'open source' claim 文档欺骗
SKILL.md states 'Open source: All code is visible and auditable in this skill package' but this merely means the code is included. True open source implies version control, issue tracking, and community oversight
**Open source**: All code is visible and auditable in this skill package
→ Rephrase to clarify code is included in the package rather than implying traditional open source project
 SKILL.md:30
资源类型声明权限推断权限状态证据
文件系统 NONE WRITE ✗ 越权 scripts/fetch_tiktok_video.py:30-31 - creates ~/.openclaw/skills/tiktok-video-do…
网络访问 READ READ ✓ 一致 Scripts make POST requests to savefbs.com API as declared
5 项发现
🔗
中危 外部 URL 外部 URL
https://savefbs.com
SKILL.md:8
🔗
中危 外部 URL 外部 URL
https://savefbs.com/pricing
SKILL.md:18
🔗
中危 外部 URL 外部 URL
https://www.tiktok.com/@username/video/1234567890
SKILL.md:59
💰
中危 钱包地址 加密货币钱包地址
0xA4195EeFF370c003C5C775BE4C3f350022666305
scripts/fetch_tiktok_video.py:23
🔗
中危 外部 URL 外部 URL
https://pay.request.network/
scripts/fetch_tiktok_video.py:24

目录结构

2 文件 · 9.5 KB · 309 行
Python 1f · 191L Markdown 1f · 118L
├─ 📁 scripts
│ └─ 🐍 fetch_tiktok_video.py Python 191L · 6.1 KB
└─ 📝 SKILL.md Markdown 118L · 3.4 KB

依赖分析 1 项

包名版本来源已知漏洞备注
requests * pip Version not pinned - could fetch any version

安全亮点

✓ No reverse shell or command execution to attacker-controlled infrastructure
✓ No credential theft or API key harvesting detected
✓ No base64 or obfuscated code execution
✓ No attempts to access ~/.ssh, ~/.aws, or other sensitive credential paths
✓ Network requests only go to declared domain (savefbs.com)
✓ Uses legitimate payment service (Request Network) for monetization