中文 EN

扫描报告

扫描新文件

低风险 — 风险评分 15/100
上次扫描:1 天前 重新扫描
15 /100
tesla-cn
面向中国特斯拉车主的远程控制技能,基于特斯拉官方车队 API(Fleet API)实现
A legitimate Tesla Fleet API client skill with no malicious behavior detected; moderate concerns around third-party proxy trust and API key in query parameters do not constitute active threat.
技能名称tesla-cn
分析耗时45.4s
引擎pi
可以安装
Approve for use. Consider auditing the proxy at tesla.dhuar.com independently. Pin Node.js to v18+ and consider storing the API key in environment variables instead of ~/.tesla_cn.json for reduced disk exposure.

安全发现 3 项

严重性 安全发现 位置
低危
API key sent as URL query parameter 敏感访问
In buildRequest(), the apiKey is appended to the URL as a query string parameter rather than placed in an HTTP Authorization header. This exposes the key in server-side access logs, CDN logs, browser history, and proxy logs along the request path to tesla.dhuar.com.
const fullUrl = `${PROXY_URL}${path}${separator}apiKey=${encodeURIComponent(apiKey)}`;
→ Use an Authorization header (e.g., Authorization: Bearer <apiKey>) instead of a query parameter. Update the proxy server to accept it in the header.
 scripts/tesla-command.js:134
低危
Third-party proxy is a trust boundary with no independent audit 数据外泄
All API requests — including the apiKey, VINs, vehicle data, and command payloads — are routed through the unaudited proxy at tesla.dhuar.com. The proxy has full visibility into every vehicle command and could log, modify, or redirect traffic. This is not declared as a risk in SKILL.md.
const PROXY_URL = "https://tesla.dhuar.com";
→ Add a trust section to SKILL.md warning users that all traffic routes through this proxy. Provide guidance on how to verify or self-host the proxy if available.
 scripts/tesla-command.js:12
低危
warranty_details endpoint missing from command registry 文档欺骗
SKILL.md documents a 'warranty_details' command (GET /api/1/dx/warranty/details) but tesla-command.js does not implement this endpoint in its config object, making the documented command unusable.
# 车辆保修信息(GET /api/1/dx/warranty/details)
→ Either implement the endpoint in tesla-command.js or remove it from SKILL.md to avoid misleading users.
 SKILL.md:67
资源类型声明权限推断权限状态证据
网络访问 READ READ ✓ 一致 tesla-command.js:144-152 — fetch() to PROXY_URL
文件系统 WRITE WRITE ✓ 一致 init-tesla-config.js:75 — fs.writeFileSync to ~/.tesla_cn.json; tesla-command.js…
命令执行 NONE NONE No subprocess, exec, or shell invocation found
环境变量 NONE READ ✓ 一致 tesla-command.js:88, init-tesla-config.js:56 — reads HOME/USERPROFILE only for p…
技能调用 NONE NONE No child skill invocation found
1 项发现
🔗
中危 外部 URL 外部 URL
https://tesla.dhuar.com
SKILL.md:16

目录结构

3 文件 · 15.2 KB · 581 行
JavaScript 2f · 401L Markdown 1f · 180L
├─ 📁 scripts
│ ├─ 📜 init-tesla-config.js JavaScript 99L · 2.2 KB
│ └─ 📜 tesla-command.js JavaScript 302L · 7.5 KB
└─ 📝 SKILL.md Markdown 180L · 5.6 KB

依赖分析 1 项

包名版本来源已知漏洞备注
node (built-in) 18+ runtime Uses only built-in Node.js modules (fs, path, fetch). No external npm dependencies.

安全亮点

✓ No shell execution, subprocess, or arbitrary code execution found
✓ No base64-encoded payloads or obfuscation detected
✓ No access to sensitive paths such as ~/.ssh, ~/.aws, or .env
✓ API key is stored locally in a user-owned JSON file, not hardcoded
✓ No credential harvesting beyond the legitimate API key needed for service operation
✓ No persistence mechanisms (cron, startup hooks) or backdoors
✓ No evidence of data exfiltration to unrelated third parties
✓ No supply chain risks — no external npm dependencies, only built-in Node.js modules