紫微斗数排盘解盘

AdvisoryAudited by Static analysis on May 10, 2026.

Overview

Detected: suspicious.dangerous_exec

Findings (2)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

NoteHigh Confidence

ASI05: Unexpected Code Execution

What this means

Running the skill or fixture helper executes local Node.js code from the skill package.

Why it was flagged

The optional fixture script executes the local Node CLI. This is disclosed and purpose-aligned, but users should recognize that running the fixture helper runs local code.

Skill content

const r = spawnSync(process.execPath, ["src/index.js"], { cwd: cliRoot, input: inputBuf, encoding: "utf8"

Recommendation

Run the CLI only from the intended skill directory, prefer the documented stdin workflow, and avoid interpolating untrusted strings directly into shell commands.

NoteHigh Confidence

ASI04: Agentic Supply Chain Vulnerabilities

What this means

Initial setup may fetch and run third-party Node packages needed for the astrology library.

Why it was flagged

The skill requires npm dependency installation even though the registry metadata has no install spec. The package files include pinned dependency information, so this is a transparency note rather than evidence of malicious behavior.

Skill content

安装依赖：

   `npm ci`

   若失败可改用 `npm install`

Recommendation

Prefer `npm ci` with the included lockfile, review package changes before using `npm install`, and install only in a trusted environment.

NoteHigh Confidence

ASI06: Memory and Context Poisoning

What this means

Saved fixture files can contain personal birth time, birthplace, gender, and generated chart data, and may be reintroduced into future model context.

Why it was flagged

The optional fixture workflow persists personal birth details and chart output for reuse in later conversations.

Skill content

将 CLI 入参（`birth_time`、`gender`、`birth_place`、可选 `longitude`）与 当次完整 stdout 写在同一文件里，以后对模型 @ 该文件

Recommendation

Create fixture files only when needed, keep them in a private location, delete them when no longer needed, and only @ fixture files you trust.

Findings (2)

critical

suspicious.dangerous_exec

Location: zwds-cli/scripts/save-fixture.mjs:35
Finding: Shell command execution detected (child_process).

critical

suspicious.dangerous_exec

Location: zwds-cli/test/golden.test.js:79
Finding: Shell command execution detected (child_process).