Medium Risk
"抖音内容创作与运营助手。抖音运营、抖音涨粉、短视频创作、抖音标题、抖音标签、抖音SEO、抖音账号运营、抖音数据分析、抖音选题、抖音脚本、抖音文案、抖音评论区运营、抖音人设定位、抖音发布时间、DOU+投放、抖音流量、短视频运营、视频创意、直播脚本、话题标签策略、合拍翻拍创意、抖音变现、带货星图、Douyin content creation、monetization。Use when: (1) generating Douyin video ideas and topics, (2) writing video scripts and口播稿, (3) creating viral titles and captions, (4) planning content calendars and posting schedules, (5) analyzing video performance metrics, (6) writing comment section engagement copy, (7) building account persona and positioning, (8) optimizing Douyin SEO and hashtags, (9) hashtag strategy with traffic tiers, (10) duet/remake ideas for using others' traffic, (11) monetization path analysis based on follower count, (12) any Douyin/short video operations task. 适用场景:抖音选题策划、视频脚本、爆款标题、发布计划、数据复盘、评论区话术、账号定位、标签优化、话题标签策略、合拍翻拍创意、变现路径分析。纯本地运行,不连接任何API,数据存储在本地。 Triggers on: douyin creator."
H:3 D:3 A:0 C:1
⚠️ Hazard Flags
EXEC FS_READ_USER NET_EGRESS_ANY CREDS_ENV CREDS_FILES PI_WEB
📋 Capabilities
Execution
- ✅ Shell execution
- ❌ Code execution
- ❌ Install dependencies
- ❌ Persistence
- Privilege: user
Filesystem
- ❌ Read workspace
- ❌ Write workspace
- ✅ Read home
- ❌ Write home
- ❌ Read system
- ❌ Delete
Network
- Egress: any
- ❌ Ingress
Credentials
- ✅ Environment vars
- ✅ Credential files
- ❌ Browser data
- ❌ Keychain
Actions
❌ send messages❌ post public❌ purchase❌ transfer money❌ deploy❌ delete external
🔒 Containment
Level: elevated
Required:
- SANDBOX_CONTAINER: Code execution capability
Recommended:
- LOG_ACTIONS: Audit trail for all actions
⚡ Risks
Unauthorized tool use: MCP_SYS_CRITICAL_ACCESS high
Mitigation: Avoid accessing system directories unless absolutely necessary.
Social engineering indicators: SOCIAL_ENG_VAGUE_DESCRIPTION low
Mitigation: Provide clear, detailed description of skill functionality
Want a deeper analysis?
This report was generated by static analysis. Get an LLM-powered deep review with behavioral reasoning and attack surface mapping.
🧠 Deep Analysis — $5.00🚨 Incident Response
Kill switch: Stop the agent process
Containment: Review logs for unexpected actions
Recovery: Depends on skill capabilities
📄 Raw SSDS JSON click to expand
{
"meta": {
"document_id": "ssds:auto:douyin-creator:2.3.5",
"ssds_version": "0.2.0",
"scanner_version": "0.4.0+fe6fd9123d50",
"created_at": "2026-03-16T13:04:56.217Z",
"created_by": {
"agent": "safeagentskills-cli/generate-ssds"
},
"language": "en",
"notes": "Auto-generated SSDS. Manual review recommended."
},
"skill": {
"name": "Douyin Creator",
"version": "2.3.5",
"format": "agent_skill",
"description": "\"抖音内容创作与运营助手。抖音运营、抖音涨粉、短视频创作、抖音标题、抖音标签、抖音SEO、抖音账号运营、抖音数据分析、抖音选题、抖音脚本、抖音文案、抖音评论区运营、抖音人设定位、抖音发布时间、DOU+投放、抖音流量、短视频运营、视频创意、直播脚本、话题标签策略、合拍翻拍创意、抖音变现、带货星图、Douyin content creation、monetization。Use when: (1) generating Douyin video ideas and topics, (2) writing video scripts and口播稿, (3) creating viral titles and captions, (4) planning content calendars and posting schedules, (5) analyzing video performance metrics, (6) writing comment section engagement copy, (7) building account persona and positioning, (8) optimizing Douyin SEO and hashtags, (9) hashtag strategy with traffic tiers, (10) duet/remake ideas for using others' traffic, (11) monetization path analysis based on follower count, (12) any Douyin/short video operations task. 适用场景:抖音选题策划、视频脚本、爆款标题、发布计划、数据复盘、评论区话术、账号定位、标签优化、话题标签策略、合拍翻拍创意、变现路径分析。纯本地运行,不连接任何API,数据存储在本地。 Triggers on: douyin creator.\"",
"publisher": "ClawHub",
"source": {
"channel": "clawhub",
"slug": "douyin-creator",
"owner": "bytesagain",
"downloads": 300,
"stars": 0
},
"artifact": {
"sha256": "95809365ae2af200e0d56b376f6507fd62098b0051c04fb5f342f9e068a67a6d",
"hash_method": "files_sorted"
}
},
"capabilities": {
"execution": {
"can_exec_shell": true,
"can_exec_code": false,
"privilege_level": "user",
"can_install_deps": false,
"can_persist": false
},
"filesystem": {
"reads_workspace": false,
"reads_user_home": true,
"reads_system": false,
"writes_workspace": false,
"writes_user_home": false,
"writes_system": false,
"can_delete": false
},
"network": {
"egress": "any",
"ingress": false
},
"credentials": {
"reads_env_vars": true,
"reads_credential_files": true,
"reads_browser_data": false,
"reads_keychain": false
},
"services": [],
"actions": {
"can_send_messages": false,
"can_post_public": false,
"can_purchase": false,
"can_transfer_money": false,
"can_deploy": false,
"can_delete_external": false
},
"prompt_injection_surfaces": [
"web"
],
"content_types": [
"general"
]
},
"hazards": {
"hdac": {
"H": 3,
"D": 3,
"A": 0,
"C": 1
},
"flags": [
"EXEC",
"FS_READ_USER",
"NET_EGRESS_ANY",
"CREDS_ENV",
"CREDS_FILES",
"PI_WEB"
],
"custom_flags": [
{
"code": "TOOL_ABUSE",
"name": "Unauthorized Tool Use",
"description": "MCP_SYS_CRITICAL_ACCESS: Access to critical system directories"
},
{
"code": "SOCIAL_ENGINEERING",
"name": "Social Engineering Risk",
"description": "SOCIAL_ENG_VAGUE_DESCRIPTION: Skill description is too vague or missing"
}
],
"confidence": {
"level": "medium",
"basis": [
"static_analysis"
],
"notes": "Detected 2 security patterns (3 vendored rule hits). Review recommended."
},
"rationale": {
"H": "H3: Shell/code execution or persistence detected",
"D": "D3: Credential access detected",
"A": "A0: No side effects detected",
"C": "C1: General content"
}
},
"containment": {
"level": "elevated",
"required": [
{
"control": "SANDBOX_CONTAINER",
"reason": "Code execution capability"
}
],
"recommended": [
{
"control": "LOG_ACTIONS",
"reason": "Audit trail for all actions"
}
],
"uncontained_risk": "Risk level depends on manual review of actual capabilities."
},
"risks": {
"risks": [
{
"risk": "Unauthorized tool use: MCP_SYS_CRITICAL_ACCESS",
"severity": "high",
"mitigation": "Avoid accessing system directories unless absolutely necessary."
},
{
"risk": "Social engineering indicators: SOCIAL_ENG_VAGUE_DESCRIPTION",
"severity": "low",
"mitigation": "Provide clear, detailed description of skill functionality"
}
],
"limitations": [
"Static analysis only - runtime behavior not verified"
]
},
"incident_response": {
"kill_switch": [
"Stop the agent process"
],
"containment": [
"Review logs for unexpected actions"
],
"recovery": [
"Depends on skill capabilities"
]
},
"evidence": [
{
"evidence_id": "EV:file-1",
"type": "file_excerpt",
"title": "_meta.json",
"file_path": "_meta.json"
},
{
"evidence_id": "EV:file-2",
"type": "file_excerpt",
"title": "SKILL.md",
"file_path": "SKILL.md"
},
{
"evidence_id": "EV:file-3",
"type": "file_excerpt",
"title": "scripts/script.sh",
"file_path": "scripts/script.sh"
},
{
"evidence_id": "EV:file-4",
"type": "file_excerpt",
"title": "scripts/douyin.sh",
"file_path": "scripts/douyin.sh"
},
{
"evidence_id": "EV:cisco-1",
"type": "file_excerpt",
"title": "SOCIAL_ENG_VAGUE_DESCRIPTION [LOW] SKILL.md:1: ---",
"file_path": "SKILL.md"
},
{
"evidence_id": "EV:cisco-2",
"type": "file_excerpt",
"title": "MCP_SYS_CRITICAL_ACCESS [HIGH] scripts/script.sh:1: #!/usr/bin/env bash",
"file_path": "scripts/script.sh"
},
{
"evidence_id": "EV:cisco-3",
"type": "file_excerpt",
"title": "MCP_SYS_CRITICAL_ACCESS [HIGH] scripts/douyin.sh:1: #!/bin/bash",
"file_path": "scripts/douyin.sh"
}
]
}