中文 EN

扫描报告

扫描新文件

可疑 — 风险评分 42/100
上次扫描:2 天前 重新扫描
42 /100
safe-flow-solana-skill
Payment skill for AI agents on Solana with on-chain rate limiting
SafeFlow Solana skill has undeclared shell execution and missing referenced files, with a doc-to-code mismatch that obscures actual implementation complexity.
技能名称safe-flow-solana-skill
分析耗时42.5s
引擎pi
谨慎使用
Add complete dependency documentation (npx, ts-node, Node.js packages), verify the sdk/src/agent and target/idl/safeflow_solana.json paths exist, and declare all shell commands and network endpoints in SKILL.md.

安全发现 5 项

严重性 安全发现 位置
高危
Undocumented shell command execution 文档欺骗
SKILL.md declares no shell:WRITE but scripts execute solana-keygen (bootstrap.sh:40) and npx ts-node (execute_payment.sh:36). This is significant shell access not disclosed to users.
solana-keygen new --no-bip39-passphrase -o "$KEYPAIR_FILE" --force
→ Document all shell commands in SKILL.md under ## Required Tools or ## Declared Capabilities
 scripts/bootstrap.sh:40
高危
Missing referenced implementation files 文档欺骗
execute_payment.sh lines 39 and 41 reference target/idl/safeflow_solana.json and ./sdk/src/agent. Neither file exists in the package. This means the script cannot function as written.
const idl = JSON.parse(fs.readFileSync('target/idl/safeflow_solana.json', 'utf8'));
→ Either include these files in the skill package or update SKILL.md to explain these are external dependencies that must be provided separately
 scripts/execute_payment.sh:39
高危
Undeclared Node.js runtime dependency 文档欺骗
save_config.sh and execute_payment.sh require Node.js with packages @solana/web3.js and @coral-xyz/anchor. SKILL.md declares no dependencies, no runtime requirements, and no package manager (npm/pnpm).
node -e "const fs = require('fs');"
→ Add a ## Dependencies section to SKILL.md listing Node.js version, npm packages, and any external CLI tools
 scripts/save_config.sh:24
中危
Undeclared network endpoints 文档欺骗
SKILL.md does not mention network:READ capability or the Solana API endpoints (api.devnet.solana.com, api.mainnet-beta.solana.com) that execute_payment.sh connects to.
? 'https://api.devnet.solana.com'
→ Add ## Network Access section to SKILL.md listing all external API endpoints
 scripts/execute_payment.sh:44
低危
Unpinned npx/ts-node execution 供应链
execute_payment.sh uses 'npx ts-node' without version pinning, which could execute different versions over time. The SKILL.md also does not declare this tool requirement.
npx ts-node -e "
→ Pin ts-node version in package.json and document the requirement in SKILL.md
 scripts/execute_payment.sh:36
资源类型声明权限推断权限状态证据
文件系统 NONE WRITE ✓ 一致 bootstrap.sh:35 writes .safeflow/config.json
命令执行 NONE WRITE ✓ 一致 bootstrap.sh:40 executes solana-keygen; execute_payment.sh:36 executes npx ts-no…
网络访问 NONE READ ✓ 一致 execute_payment.sh:44-46 connects to api.devnet.solana.com
环境变量 NONE NONE No environment variable access detected
2 项发现
🔗
中危 外部 URL 外部 URL
https://api.devnet.solana.com
scripts/execute_payment.sh:44
🔗
中危 外部 URL 外部 URL
https://api.mainnet-beta.solana.com
scripts/execute_payment.sh:46

目录结构

4 文件 · 7.9 KB · 264 行
Shell 3f · 193L Markdown 1f · 71L
├─ 📁 scripts
│ ├─ 🔧 bootstrap.sh Shell 64L · 1.7 KB
│ ├─ 🔧 execute_payment.sh Shell 91L · 3.1 KB
│ └─ 🔧 save_config.sh Shell 38L · 1.0 KB
└─ 📝 SKILL.md Markdown 71L · 2.1 KB

依赖分析 5 项

包名版本来源已知漏洞备注
npx * npm Not pinned, not declared in SKILL.md
ts-node * npm Not pinned, not declared in SKILL.md
@solana/web3.js * npm Not declared in SKILL.md, loaded at runtime
@coral-xyz/anchor * npm Not declared in SKILL.md, loaded at runtime
solana-keygen * cli External Solana CLI tool, not declared in SKILL.md

安全亮点

✓ No credential harvesting or sensitive data exfiltration detected
✓ No base64-encoded obfuscation or anti-analysis techniques found
✓ No reverse shell, C2, or reverse connection behavior
✓ No hidden instructions in comments or documentation
✓ No attempts to access ~/.ssh, ~/.aws, or .env files
✓ Payment logic appears to be legitimate Solana on-chain rate limiting
✓ No evidence of persistence mechanisms (cron, startup hooks, backdoors)