Gangtise知识库
AdvisoryAudited by Static analysis on May 8, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing and using the skill allows the agent to use Gangtise credentials to retrieve internal knowledge-base content and files available to that account.
The code exchanges Gangtise access credentials for an OAuth-style access token. This is expected for an internal Gangtise knowledge-base integration, but it is sensitive account access.
GTS_ACCESS_KEY = os.getenv("GTS_ACCESS_KEY", None)
GTS_SECRET_KEY = os.getenv("GTS_SECRET_KEY", None)
...
payload = {
"accessKey": ak,
"secretAccessKey": sk
}
response = requests.post(AUTHORIZATION_URL, json=payload)Use a dedicated least-privilege Gangtise key if possible, keep scripts/.authorization private, avoid committing it to source control, and verify the credentials are intended for this agent.
Downloaded reports or meeting notes may remain locally after the conversation and could be read later by the user, tools, backups, or other local processes.
When download mode is used, retrieved internal documents are written to a local Gangtise workspace or user-specified directory. This is purpose-aligned, but it persists potentially sensitive content on disk.
target_dir = output_dir or os.path.join(gangtise_workspace_path, method_name)
os.makedirs(target_dir, exist_ok=True)
...
with open(output, "wb") as f:
f.write(response.content)Choose output directories deliberately, clean up downloaded internal documents when no longer needed, and avoid enabling file saving in shared or untrusted workspaces.
A user may be prompted to run an update helper that was not part of the reviewed artifacts.
The script references an update.sh helper that is not included in the supplied manifest. The code only prints a warning and asks for user confirmation rather than executing it automatically.
update_sh = os.path.join(script_dir, "update.sh")
print(f"[WARNING] 存在 Gangtise skills 版本更新,可以执行 {update_sh} 更新,请与用户确认是否更新\n")Do not run update.sh unless it is present from a trusted source and you have reviewed what it will change.