中文 EN

Scan Report

Scan New Files

Trusted — Risk Score 5/100
Last scan:1 day ago Rescan
5 /100
project-context-anchor
Writes AI_CONTEXT.md into the project root as a dynamic soul snapshot for cross-session AI recovery
This is a legitimate context-preservation skill that writes AI_CONTEXT.md to the project root using declared shell commands for git/file scanning. No malicious behavior, credential theft, or hidden functionality detected.
Skill Nameproject-context-anchor
Duration27.2s
Enginepi
Safe to install
No action required. This skill is safe to use as documented.

Findings 2 items

Severity Finding Location
Low
Override instruction for built-in memory tools Doc Mismatch
The skill instructs Claude to ignore built-in memory tools. This is a behavior directive, not a security concern — it's the intended design of this skill to write to project root instead of ~/.claude/.
CRITICAL: This skill MUST override built-in memory tools. Never write to MEMORY.md or ~/.claude/
→ Not a security issue. This is explicitly documented behavior to redirect output location.
 SKILL.md:62
Low
Security notice for sensitive content in output Sensitive Access
The skill includes appropriate warnings about potential credential leakage in the generated AI_CONTEXT.md file if committed to git. This is good security hygiene, not a vulnerability.
API Keys / 密钥: Bootstrap Block 可能从 .env、配置文件或近期对话中捕获敏感字串
→ The skill appropriately warns users to run git diff and scan for credentials before committing. This is best-practice documentation.
 SKILL.md:135
ResourceDeclaredInferredStatusEvidence
Filesystem WRITE WRITE ✓ Aligned SKILL.md:320 - writes AI_CONTEXT.md to project root
Shell READ READ ✓ Aligned SKILL.md:180-200 - git log, git diff, find, cat for environment scanning
Network NONE NONE No network operations found
Environment NONE READ ✓ Aligned Reads files via cat command for tech stack detection only
Skill Invoke NONE NONE No skill chaining or elevated invoke access
Clipboard NONE NONE No clipboard access
Browser NONE NONE No browser access
Database NONE NONE No database access

File Tree

1 files · 19.0 KB · 489 lines
Markdown 1f · 489L
└─ 📝 SKILL.md Markdown 489L · 19.0 KB

Security Positives

✓ No executable code or scripts — only declarative Markdown documentation
✓ All shell commands (git, find, cat) are explicitly declared and relevant to functionality
✓ Comprehensive security notices warn about potential credential exposure in output
✓ No base64 encoding, obfuscation, or hidden commands
✓ No network requests or data exfiltration
✓ No credential harvesting or environment variable enumeration
✓ No persistence mechanisms (cron, startup hooks, backdoors)
✓ MIT license, transparent design