扫描报告
5 /100
Ebook — Digital Book Collection & Reading Tracker
Manage ebook collections, track reading progress, and export highlights using bash and Python
A legitimate ebook management tool that stores data locally in JSONL format with no suspicious behavior, credential access, network requests, or obfuscation detected.
可以安装
This skill is safe to use. No security concerns identified.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | WRITE | WRITE | ✓ 一致 | scripts/script.sh:9 - DATA_DIR="$HOME/.ebook"; mkdir -p "$DATA_DIR" |
| 命令执行 | WRITE | WRITE | ✓ 一致 | scripts/script.sh:44 - Uses python3 heredoc for command dispatch |
| 网络访问 | NONE | NONE | — | No curl/wget/network calls found |
| 环境变量 | NONE | READ | ✓ 一致 | scripts/script.sh:368 - Reads SKILL_CMD and SKILL_ARGV for internal dispatch |
| 技能调用 | NONE | NONE | — | No skill_invoke usage |
| 剪贴板 | NONE | NONE | — | No clipboard access |
| 浏览器 | NONE | NONE | — | No browser access |
| 数据库 | NONE | NONE | — | Uses local JSONL file, not a database |
2 项发现
中危 外部 URL 外部 URL
https://bytesagain.com SKILL.md:4 提示 邮箱 邮箱地址
[email protected] SKILL.md:104 目录结构
2 文件 · 21.9 KB · 637 行 Shell 1f · 533L
Markdown 1f · 104L
├─
▾
scripts
│ └─
script.sh
Shell
└─
SKILL.md
Markdown
安全亮点
✓ All file operations confined to ~/.ebook/ directory as documented
✓ No network requests or external IP communications
✓ No credential harvesting or sensitive path access (~/.ssh, ~/.aws, .env)
✓ No obfuscation (base64, eval, atob) detected
✓ Uses only Python standard library (json, os, uuid, datetime)
✓ Data export requires explicit --output parameter with user-controlled path
✓ Clear, readable code with no hidden functionality
✓ All 11 commands documented in SKILL.md with no undocumented behavior