扫描报告
10 /100
hivebrite
Hivebrite integration skill using Membrane CLI for community management platform API access
A pure documentation-only skill that describes how to use the Membrane CLI for Hivebrite integration. No executable code, scripts, or hidden functionality detected.
可以安装
No immediate action required. This skill is a documentation file with no executable components. The shell commands described (npm install, membrane CLI) are declared and necessary for the stated functionality.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | NONE | NONE | — | No filesystem access detected |
| 网络访问 | READ | READ | ✓ 一致 | SKILL.md documents network API calls via membrane CLI |
| 命令执行 | WRITE | WRITE | ✓ 一致 | npm install and membrane CLI commands documented as necessary |
| 环境变量 | NONE | NONE | — | No environment variable access documented or detected |
| 技能调用 | NONE | NONE | — | No cross-skill invocation documented |
| 剪贴板 | NONE | NONE | — | No clipboard access detected |
| 浏览器 | READ | READ | ✓ 一致 | Browser authentication flow documented in SKILL.md |
| 数据库 | NONE | NONE | — | No database access detected |
2 项发现
中危 外部 URL 外部 URL
https://getmembrane.com SKILL.md:7 中危 外部 URL 外部 URL
https://developers.hivebrite.com/ SKILL.md:19 目录结构
1 文件 · 5.4 KB · 172 行 Markdown 1f · 172L
└─
SKILL.md
Markdown
安全亮点
✓ No executable code or scripts present - pure documentation skill
✓ All shell commands (npm install, membrane CLI) are fully documented
✓ Credential handling best practices documented: 'Let Membrane handle credentials — never ask the user for API keys or tokens'
✓ No hidden functionality or shadow features detected
✓ No credential theft patterns (no env iteration, no sensitive path access)
✓ No data exfiltration indicators (no external IPs, no suspicious URLs except legitimate service domains)
✓ No obfuscation or anti-analysis techniques
✓ External URLs point to legitimate services: getmembrane.com and developers.hivebrite.com