webunlocker Security Report — Trusted | ClawSafe

5 /100

webunlocker

Bypass website blocks and scrape web content using Scrapeless Universal Scraping API

WebUnlocker 是一个合法的商业网页抓取工具，通过 Scrapeless API 绕过网站反爬机制，代码结构清晰，无恶意行为。

Skill Namewebunlocker

Duration28.2s

Enginepi

✓

Safe to install

可直接使用。建议锁定 requests 包版本以减少供应链风险。

Findings 1 items

Severity	Finding	Location
Low	第三方依赖无版本锁定 Supply Chain requirements.txt 中 requests 版本为 *，未锁定具体版本。 `requests` → 建议固定版本，如 requests>=2.31.0	`requirements.txt:1`

Resource	Declared	Inferred	Status	Evidence
Network	`READ`	`READ`	✓ Aligned	仅向 api.scrapeless.com 发送 HTTP POST 请求，符合 Scrapeless API 商业服务调用
Environment	`READ`	`READ`	✓ Aligned	scripts/webunlocker.py:37 仅读取 X_API_TOKEN
Filesystem	`NONE`	`READ`	✓ Aligned	仅通过 load_dotenv() 读取 .env 文件，符合声明

19 findings

🔗

Medium External URL 外部 URL

https://www.scrapeless.com/en/product/universal-scraping-api

README.md:2

🔗

Medium External URL 外部 URL

https://www.youtube.com/@Scrapeless

README.md:11

🔗

Medium External URL 外部 URL

https://img.shields.io/badge/Follow%20on%20YouTuBe-FF0033?style=for-the-badge&logo=youtube&logoColor=white

README.md:12

🔗

Medium External URL 外部 URL

https://discord.com/invite/xBcTfGPjCQ

README.md:14

🔗

Medium External URL 外部 URL

https://img.shields.io/badge/Join%20our%20Discord-5865F2?style=for-the-badge&logo=discord&logoColor=white

README.md:15

🔗

Medium External URL 外部 URL

https://x.com/Scrapelessteam

README.md:17

🔗

Medium External URL 外部 URL

https://img.shields.io/badge/Follow%20us%20on%20X-000000?style=for-the-badge&logo=x&logoColor=white

README.md:18

🔗

Medium External URL 外部 URL

https://www.reddit.com/r/Scrapeless

README.md:20

🔗

Medium External URL 外部 URL

https://img.shields.io/badge/Join%20us%20on%20Reddit-FF4500?style=for-the-badge&logo=reddit&logoColor=white

README.md:21

🔗

Medium External URL 外部 URL

https://app.scrapeless.com/passport/register?utm_source=official&utm_term=githubopen

README.md:23

🔗

Medium External URL 外部 URL

https://img.shields.io/badge/Official%20Website-12A594?style=for-the-badge&logo=google-chrome&logoColor=white

README.md:24

🔗

Medium External URL 外部 URL

https://www.scrapeless.com

README.md:140

🔗

Medium External URL 外部 URL

https://httpbin.io/get

README.md:146

🔗

Medium External URL 外部 URL

https://httpbin.org/post

README.md:161

🔗

Medium External URL 外部 URL

https://2captcha.com/demo/cloudflare-turnstile-challenge

README.md:173

🔗

Medium External URL 外部 URL

https://docs.scrapeless.com/en/llm-chat-scraper/quickstart/introduction/

README.md:206

🔗

Medium External URL 外部 URL

https://docs.scrapeless.com/en/universal-scraping-api/

README.md:207

🔗

Medium External URL 外部 URL

https://api.scrapeless.com

scripts/webunlocker.py:48

📧

Info Email 邮箱地址

[email protected]

README.md:211

File Tree

4 files · 23.9 KB · 709 lines

Python 1f · 358L Markdown 2f · 350L Text 1f · 1L

├─ ▾ 📁 scripts

│ └─ 🐍 webunlocker.py Python 358L · 11.8 KB

├─ 📝 README.md Markdown 213L · 7.6 KB

├─ 📄 requirements.txt Text 1L · 22 B

└─ 📝 SKILL.md Markdown 137L · 4.5 KB

Dependencies 2 items

Package	Version	Source	Known Vulns	Notes
`requests`	`*`	pip	No	无版本锁定
`python-dotenv`	`*`	pip	No	无版本锁定

Security Positives

✓ 代码结构清晰，无混淆或编码执行

✓ 所有网络通信仅指向官方 API 端点 api.scrapeless.com

✓ SKILL.md 声明与代码行为完全一致，无阴影功能

✓ 不访问任何敏感路径（~/.ssh、~/.aws、.env 中的凭证仅自用）

✓ 不遍历环境变量收割凭证

✓ 不执行任何 shell 命令或子进程

✓ 无反向 shell、C2 通信或数据外泄行为

✓ 依赖简单（仅 requests + python-dotenv）

Scan Report

Findings 1 items

File Tree

Dependencies 2 items

Security Positives