技能 chrome-extension-icons 审计历史
📦

审计历史

chrome-extension-icons - 6 审计

审计版本 6

最新 中风险

Jun 28, 2026, 04:23 PM

AI review did not confirm the static critical heuristic as malicious. Most backtick, weak-crypto, and hidden-file alerts are false positives from markdown fences, template literals, URLs, and the ~/.claude installation path. The real risk is medium because the skill runs a local Node script that downloads icons, reads SVG/config files, writes PNG files, and updates manifest.json paths.

3
已扫描文件
1,453
分析行数
10
发现项
codex
审计者
中风险问题 (2)
scripts/generate-icons.js:168-172scripts/generate-icons.js:209-228scripts/generate-icons.js:292scripts/generate-icons.js:377
User-Controlled Local File Reads and Writes
The generator accepts user-supplied input, output, manifest, and config paths. This is necessary for the skill, but it can read local SVG/config files and overwrite or create files if pointed at unintended paths.
SKILL.md:29-31SKILL.md:60-64SKILL.md:260-269
Agent-Executed Shell Workflow
The skill instructs the assistant to run local Node commands and dependency installation commands. This is expected for a generator skill, but users should review commands before execution, especially installation commands.
低风险问题 (3)
scripts/generate-icons.js:46-52scripts/generate-icons.js:100scripts/generate-icons.js:118-119SKILL.md:326
Network Access Limited to Iconify and Documentation URLs
The script uses HTTP modules and builds Iconify API URLs for search, SVG download, and preview links. No evidence found that it sends local files, credentials, or environment values over the network.
scripts/generate-icons.js:606-608
Benign DEBUG Environment Check
The only environment access found is process.env.DEBUG, used to decide whether to print an error stack. No evidence found of secret access or environment exfiltration.
examples/usage.md:10-17examples/usage.md:24scripts/generate-icons.js:55-60
Static Scanner False Positives from Markdown and Template Literals
Many external command and weak-cryptography alerts are caused by markdown code fences, shell examples, URLs, icon identifiers, and JavaScript template literals rather than Ruby backticks or cryptographic code.

风险因素

⚡ 包含脚本 (2)
scripts/generate-icons.js:1-14 scripts/generate-icons.js:26
🌐 网络访问 (4)
scripts/generate-icons.js:18-20 scripts/generate-icons.js:46-52 scripts/generate-icons.js:100 scripts/generate-icons.js:118-119
📁 文件系统访问 (6)
scripts/generate-icons.js:172 scripts/generate-icons.js:209 scripts/generate-icons.js:228-230 scripts/generate-icons.js:258 scripts/generate-icons.js:292 scripts/generate-icons.js:377
⚙️ 外部命令 (4)
SKILL.md:29-31 SKILL.md:60-64 SKILL.md:260-269 examples/usage.md:14-17
🔑 环境变量 (1)
scripts/generate-icons.js:606-608

检测到的模式

Network Plus Filesystem AutomationPrivileged Dependency Installation Guidance

审计版本 5

安全

Jan 16, 2026, 08:13 PM

This skill is a legitimate icon generation tool for Chrome extensions. All detected patterns are false positives: documentation examples trigger command pattern detection, network requests are to the documented Iconify API, and filesystem operations are standard file writes to user-specified directories. No credential access, exfiltration, or malicious behavior present.

4
已扫描文件
1,737
分析行数
5
发现项
claude
审计者
低风险问题 (2)
scripts/generate-icons.js:97-163
Network requests to external API
The script makes HTTPS requests to api.iconify.design to search for and download icons. This is documented and expected behavior for a legitimate icon generation tool.
scripts/generate-icons.js:200-246
Filesystem write access in user directories
The script writes PNG files to user-specified output directories and modifies manifest.json. This is necessary for icon generation.

风险因素

🌐 网络访问 (1)
scripts/generate-icons.js:46-92
📁 文件系统访问 (1)
scripts/generate-icons.js:168-246
⚡ 包含脚本 (1)
scripts/generate-icons.js:1-631

审计版本 4

安全

Jan 16, 2026, 08:13 PM

This skill is a legitimate icon generation tool for Chrome extensions. All detected patterns are false positives: documentation examples trigger command pattern detection, network requests are to the documented Iconify API, and filesystem operations are standard file writes to user-specified directories. No credential access, exfiltration, or malicious behavior present.

4
已扫描文件
1,737
分析行数
5
发现项
claude
审计者
低风险问题 (2)
scripts/generate-icons.js:97-163
Network requests to external API
The script makes HTTPS requests to api.iconify.design to search for and download icons. This is documented and expected behavior for a legitimate icon generation tool.
scripts/generate-icons.js:200-246
Filesystem write access in user directories
The script writes PNG files to user-specified output directories and modifies manifest.json. This is necessary for icon generation.

风险因素

🌐 网络访问 (1)
scripts/generate-icons.js:46-92
📁 文件系统访问 (1)
scripts/generate-icons.js:168-246
⚡ 包含脚本 (1)
scripts/generate-icons.js:1-631

审计版本 3

低风险

Jan 10, 2026, 11:29 AM

This skill is a legitimate icon generation tool for Chrome extensions. It makes documented HTTPS requests to the Iconify API to search and download icons, converts SVG to PNG using the Sharp library, and updates manifest.json. All operations are confined to user-specified directories with no exfiltration or persistence mechanisms.

4
已扫描文件
1,485
分析行数
5
发现项
claude
审计者
低风险问题 (2)
scripts/generate-icons.js:97-163
Network requests to external API
The script makes HTTPS requests to api.iconify.design to search for and download icons. This is documented and expected behavior for a legitimate icon generation tool. Endpoints accessed: search API at line 100 and download API at line 144.
scripts/generate-icons.js:200-246
Filesystem write access in user directories
The script writes PNG files to user-specified output directories and modifies manifest.json. This is necessary for icon generation but provides filesystem access beyond the skill's own directory.

风险因素

🌐 网络访问 (3)
scripts/generate-icons.js:46-92 scripts/generate-icons.js:97-132 scripts/generate-icons.js:137-163
📁 文件系统访问 (3)
scripts/generate-icons.js:168-179 scripts/generate-icons.js:200-246 scripts/generate-icons.js:251-301
⚡ 包含脚本 (1)
scripts/generate-icons.js:1-631

审计版本 2

低风险

Jan 10, 2026, 11:29 AM

This skill is a legitimate icon generation tool for Chrome extensions. It makes documented HTTPS requests to the Iconify API to search and download icons, converts SVG to PNG using the Sharp library, and updates manifest.json. All operations are confined to user-specified directories with no exfiltration or persistence mechanisms.

4
已扫描文件
1,485
分析行数
5
发现项
claude
审计者
低风险问题 (2)
scripts/generate-icons.js:97-163
Network requests to external API
The script makes HTTPS requests to api.iconify.design to search for and download icons. This is documented and expected behavior for a legitimate icon generation tool. Endpoints accessed: search API at line 100 and download API at line 144.
scripts/generate-icons.js:200-246
Filesystem write access in user directories
The script writes PNG files to user-specified output directories and modifies manifest.json. This is necessary for icon generation but provides filesystem access beyond the skill's own directory.

风险因素

🌐 网络访问 (3)
scripts/generate-icons.js:46-92 scripts/generate-icons.js:97-132 scripts/generate-icons.js:137-163
📁 文件系统访问 (3)
scripts/generate-icons.js:168-179 scripts/generate-icons.js:200-246 scripts/generate-icons.js:251-301
⚡ 包含脚本 (1)
scripts/generate-icons.js:1-631

审计版本 1

低风险

Jan 10, 2026, 11:29 AM

This skill is a legitimate icon generation tool for Chrome extensions. It makes documented HTTPS requests to the Iconify API to search and download icons, converts SVG to PNG using the Sharp library, and updates manifest.json. All operations are confined to user-specified directories with no exfiltration or persistence mechanisms.

4
已扫描文件
1,485
分析行数
5
发现项
claude
审计者
低风险问题 (2)
scripts/generate-icons.js:97-163
Network requests to external API
The script makes HTTPS requests to api.iconify.design to search for and download icons. This is documented and expected behavior for a legitimate icon generation tool. Endpoints accessed: search API at line 100 and download API at line 144.
scripts/generate-icons.js:200-246
Filesystem write access in user directories
The script writes PNG files to user-specified output directories and modifies manifest.json. This is necessary for icon generation but provides filesystem access beyond the skill's own directory.

风险因素

🌐 网络访问 (3)
scripts/generate-icons.js:46-92 scripts/generate-icons.js:97-132 scripts/generate-icons.js:137-163
📁 文件系统访问 (3)
scripts/generate-icons.js:168-179 scripts/generate-icons.js:200-246 scripts/generate-icons.js:251-301
⚡ 包含脚本 (1)
scripts/generate-icons.js:1-631
← 返回技能