扫描报告
5 /100
project-bootstrap
Bootstrap a multi-agent software project from idea to running CI/CD
A legitimate project-bootstrap skill with a clean taskboard CLI. All behavior is declared, scoped, and uses only standard library. No malicious indicators found.
可以安装
No action needed. Skill is safe for deployment.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | NONE | WRITE | ✓ 一致 | scripts/taskboard.py:68 - open(self.path, 'w') and open(self.cache_file, 'w') |
| 网络访问 | NONE | READ | ✓ 一致 | scripts/taskboard.py:97-106 - GitHub API calls via urllib for task sync |
| 环境变量 | NONE | READ | ✓ 一致 | scripts/taskboard.py:93 - os.environ.get(config.get('token_env', 'GITHUB_TOKEN')… |
| 命令执行 | NONE | NONE | — | No subprocess, os.system, or shell invocation found |
| 技能调用 | NONE | NONE | — | No dynamic skill invocation or meta-programming detected |
| 剪贴板 | NONE | NONE | — | No clipboard access |
| 浏览器 | NONE | NONE | — | No browser automation |
| 数据库 | NONE | NONE | — | No database access |
1 项发现
中危 外部 URL 外部 URL
https://discord.com/api/webhooks/ references/ci-cd-templates.md:127 目录结构
4 文件 · 31.1 KB · 988 行 Markdown 3f · 497L
Python 1f · 491L
├─
▾
references
│ ├─
ci-cd-templates.md
Markdown
│ └─
taskboard-setup.md
Markdown
├─
▾
scripts
│ └─
taskboard.py
Python
└─
SKILL.md
Markdown
安全亮点
✓ Uses only Python standard library — no third-party dependencies, no supply chain risk
✓ GitHub token access is purpose-limited to GitHub API calls only (urlopen to api.github.com), not exfiltrated
✓ No subprocess, os.system, shell invocation, or any dynamic code execution
✓ No base64, obfuscation, eval, or anti-analysis patterns
✓ Local backend is read-only to the user's workspace unless explicitly configured
✓ File writes are scoped to user-specified JSON files directly related to the taskboard feature
✓ References/ci-cd-templates.md includes a Discord webhook URL but only in documentation context, not in any executable code
✓ The entire codebase is readable, straightforward CLI logic — no hidden functionality
✓ No sensitive paths (~/.ssh, ~/.aws, .env) are accessed
✓ No persistence mechanisms (cron, startup hooks, systemd units)