gequhai-music 安全扫描报告 — 可疑 | ClawSafe

45 /100

gequhai-music

歌曲海音乐搜索与下载技能 - Search and download music from gequhai.com to Synology NAS

Skill contains hardcoded Synology credentials and base64 obfuscation for download URLs without full disclosure in documentation, presenting significant security risks for credential exposure and unauthorized NAS access.

技能名称gequhai-music

分析耗时67.3s

引擎pi

⚠

谨慎使用

Remove hardcoded credentials from source code and use environment variables or secure credential storage. Declare all credential usage in SKILL.md. Consider if base64 obfuscation of download URLs is necessary or could be simplified.

安全发现 5 项

严重性	安全发现	位置
高危	Hardcoded Synology password not declared in documentation 凭证窃取 Synology NAS password 'Xx654321' is hardcoded in scripts/gequhai_crawler.py line 215. SKILL.md only mentions username 'xiaoai' but does not disclose the password. This exposes credentials that could be extracted and reused for unauthorized NAS access. `SYNOLOGY_PASS = "Xx654321"` → Use environment variables or secure credential storage. Declare credential usage in SKILL.md if intentional.	`scripts/gequhai_crawler.py:215`
中危	Base64 obfuscation for download URLs 代码混淆 The decode_modified_base64() function uses custom base64 encoding where # is replaced with H and % is replaced with S. While used for legitimate music download URLs, this obfuscation pattern is suspicious and could hide malicious payloads. `modified = encoded.replace("#", "H").replace("%", "S")` → If this is for legitimate URL encoding, document the scheme in SKILL.md. Consider using standard base64 if possible.	`scripts/gequhai_crawler.py:52`
中危	Undeclared filesystem write capability 文档欺骗 SKILL.md declares network capabilities but the skill also writes to local data/ directory (music_cache.json, rename_queue.json) and performs file operations on Synology NAS (rename, move files). These filesystem WRITE operations are not documented. `DATA_DIR = Path(__file__).parent.parent / "data"` → Document all filesystem operations in SKILL.md, including data/ directory writes and Synology file operations.	`scripts/gequhai_crawler.py:30`
低危	Auto-registration to configurable gateway URL 权限提升 The FastAPI service auto-registers to a Skill Gateway at a URL controlled by environment variable SKILL_GATEWAY_URL. While this is a common pattern, it could be abused if the environment variable is compromised. `GATEWAY_URL = os.getenv("SKILL_GATEWAY_URL", "http://localhost:8200")` → Verify the gateway URL is from a trusted source and consider hardcoding known-good gateway addresses.	`service/main.py:135`
提示	Hardcoded local network IP address 敏感访问 Synology NAS IP address 192.168.123.223 is hardcoded. While this is declared in SKILL.md, hardcoded internal IPs are generally not recommended. `SYNOLOGY_HOST = "192.168.123.223"` → Consider using environment variable for the NAS host address to support different deployment environments.	`scripts/gequhai_crawler.py:211`

资源类型	声明权限	推断权限	状态	证据
网络访问	`READ`	`READ`	✓ 一致	Makes HTTP requests to gequhai.com
命令执行	`NONE`	`NONE`	—	No subprocess/shell execution detected
文件系统	`NONE`	`WRITE`	✗ 越权	Writes to data/ directory and Synology NAS
数据库	`NONE`	`NONE`	—	No database access

1 高危 5 项发现

📡

高危 IP 地址硬编码 IP 地址

120.0.0.0

scripts/gequhai_crawler.py:30

🔗

中危外部 URL 外部 URL

https://www.gequhai.com/

SKILL.md:26

🔗

中危外部 URL 外部 URL

https://pan.quark.cn/s/276fd9172e63

data/download_info.json:30

🔗

中危外部 URL 外部 URL

https://lv-sycdn.kuwo.cn/2d44367307dca6de508dc3d6437ca393/69b35b17/resource/30106/trackmedia/M500002eyjaI0NYQfW.mp3

data/download_info.json:31

🔗

中危外部 URL 外部 URL

https://www.gequhai.com

scripts/gequhai_crawler.py:20

目录结构

16 文件 · 59.2 KB · 1987 行

Python 10f · 1626L JSON 4f · 224L Markdown 1f · 133L Text 1f · 4L

├─ ▾ 📁 data

│ ├─ 📋 download_info.json JSON 32L · 792 B

│ ├─ 📋 jj_search.json JSON 4L · 61 B

│ ├─ 📋 ranking.json JSON 187L · 3.5 KB

│ └─ 📋 rename_queue.json JSON 1L · 2 B

├─ ▾ 📁 scripts

│ ├─ 🐍 gequhai_crawler.py Python 925L · 30.0 KB

│ ├─ 🐍 get_hot.py Python 18L · 554 B

│ ├─ 🐍 get_ranking_file.py Python 69L · 2.1 KB

│ ├─ 🐍 get_ranking_json.py Python 64L · 1.9 KB

│ ├─ 🐍 get_ranking.py Python 72L · 2.2 KB

│ ├─ 🐍 search_download.py Python 142L · 4.3 KB

│ ├─ 🐍 search_jj_new.py Python 46L · 1.5 KB

│ ├─ 🐍 search_jj.py Python 45L · 1.4 KB

│ └─ 🐍 test_search.py Python 36L · 1.1 KB

├─ ▾ 📁 service

│ ├─ 🐍 main.py Python 209L · 6.2 KB

│ └─ 📄 requirements.txt Text 4L · 64 B

└─ 📝 SKILL.md Markdown 133L · 3.6 KB

依赖分析 5 项

包名	版本	来源	已知漏洞	备注
`requests`	`>=2.32.0`	requirements.txt	否	Pinned minimum version
`beautifulsoup4`	`*`	gequhai_crawler.py	否	Imported but not in requirements
`fastapi`	`>=0.115.0`	requirements.txt	否	Pinned minimum version
`uvicorn`	`>=0.32.0`	requirements.txt	否	Pinned minimum version
`httpx`	`>=0.27.0`	requirements.txt	否	Pinned minimum version

安全亮点

✓ No evidence of credential exfiltration - credentials used only for legitimate NAS access

✓ No reverse shell, C2 communication, or data theft behavior detected

✓ API authentication key is properly documented in SKILL.md

✓ Uses standard HTTP libraries (requests, httpx) without suspicious patterns

✓ No attempts to access sensitive paths like ~/.ssh, ~/.aws, or .env files

✓ No curl|bash or wget|sh remote script execution patterns