Scan Report
5 /100
super-train
火车票智能中转方案推荐助手
A well-documented train ticket query assistant that exclusively relies on the flyai CLI for execution, with no executable code, no credential access, and comprehensive shell injection prevention documented in SKILL.md.
Safe to install
No security concerns identified. The skill is safe to use as documented.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | READ | WRITE | ✓ Aligned | SKILL.md:170-200 - describes reading preferences.json and appending to history.j… |
| Shell | WRITE | WRITE | ✓ Aligned | SKILL.md:70-90 - documents flyai search-train command execution |
File Tree
4 files · 16.8 KB · 402 lines Markdown 2f · 386L
JSON 2f · 16L
├─
▾
assets
│ ├─
history.json
JSON
│ └─
preferences.json
JSON
├─
▾
references
│ └─
flyai-cli-reference.md
Markdown
└─
SKILL.md
Markdown
Dependencies 1 items
| Package | Version | Source | Known Vulns | Notes |
|---|---|---|---|---|
@fly-ai/flyai-cli | * | npm | No | External CLI tool, version not pinned in documentation |
Security Positives
✓ Comprehensive shell injection prevention documented with explicit character blocklists
✓ File path access strictly constrained to assets/ directory
✓ All behavior clearly declared in SKILL.md with no hidden functionality
✓ Input validation rules explicitly defined with max lengths and allowed character sets
✓ No credential, SSH, AWS, or environment variable access
✓ No network requests made by the skill itself (delegates to external CLI)
✓ Well-structured JSON validation for user preferences
✓ No base64, obfuscation, or suspicious code patterns detected