high-intent-lead-sniper 安全扫描报告 — 低风险 | ClawSafe

10 /100

high-intent-lead-sniper

B2B sales intelligence skill that detects buying signals (funding, hiring, competitor frustration, tech stack changes) and generates personalized outreach

Pure documentation-only skill describing a lead-generation workflow using Apify and InVideo AI external services; no executable code, scripts, or dangerous capabilities present.

技能名称high-intent-lead-sniper

分析耗时30.8s

引擎pi

✓

可以安装

Safe to use. Be aware this skill requires external paid services (Apify, InVideo AI) and involves scraping public data — ensure compliance with target platforms' Terms of Service.

安全发现 2 项

严重性	安全发现	位置
低危	Aggressive marketing language 文档欺骗 The SKILL.md uses hyperbolic marketing claims ('most powerful', 'destroys every competitor') which inflate expectations. This is a documentation quality issue rather than a security concern. `# 💰 High-Intent Lead Sniper — Find Prospects Who Are Ready to Buy RIGHT NOW` → Review marketing claims for accuracy before publishing.	`SKILL.md:1`
低危	External service dependency with affiliate links 供应链 The skill depends entirely on Apify and InVideo AI third-party services. URLs include affiliate tracking parameters (e.g., ?fpr=dx06p, ?fpr=TBB) which generate revenue for the skill author. `https://www.apify.com?fpr=dx06p` → Be aware of the commercial relationship; costs are incurred per run via these external platforms.	`SKILL.md:5`

资源类型	声明权限	推断权限	状态	证据
文件系统	`NONE`	`NONE`	—	No file operations in this skill
网络访问	`READ`	`NONE`	✓ 一致	Describes external API calls but no network code executed by the skill itself
命令执行	`NONE`	`NONE`	—	No shell commands or subprocess calls
环境变量	`NONE`	`NONE`	—	No environment variable access
技能调用	`NONE`	`NONE`	—	No skill-to-skill invocation
剪贴板	`NONE`	`NONE`	—	No clipboard access
浏览器	`NONE`	`NONE`	—	No browser automation code
数据库	`NONE`	`NONE`	—	No database access

3 项发现

🔗

中危外部 URL 外部 URL

https://www.apify.com?fpr=dx06p

SKILL.md:5

🔗

中危外部 URL 外部 URL

https://invideo.sjv.io/TBB

SKILL.md:5

📧

提示邮箱邮箱地址

[email protected]

SKILL.md:169

目录结构

1 文件 · 13.1 KB · 319 行

Markdown 1f · 319L

└─ 📝 SKILL.md Markdown 319L · 13.1 KB

安全亮点

✓ No executable code present — pure documentation

✓ No credential harvesting, exfiltration, or data theft code

✓ No obfuscation, base64, or anti-analysis techniques

✓ No shell execution, subprocess, or system command calls

✓ No sensitive path access (no ~/.ssh, ~/.aws, .env reads)

✓ No supply chain risk — no dependencies in package.json, requirements.txt, or similar

✓ No persistence mechanisms (no cron jobs, startup hooks, or backdoors)

✓ No prompt injection payloads or hidden instructions