GitVérifié

Risque eleve

captcha-relay

Des signaux critiques ont ete detectes et l'installation doit etre encadree.

0/100

3critical3high2medium

Recommandations

🚨 Score 0/100 — Ce skill est extrêmement dangereux. Ne pas installer.

Risques Détectés8

Data Exfiltrationcritical

data_exfiltration

Data exfiltration attempt

Line 157

Snippets

L157

Minimal HTTP server (no Express). Serves templated CAPTCHA page on GET /, receives token on POST /token. Writes token to `/tmp/captcha-relay-token.txt` and resolves a Promise.

L1503 } else if (req.method === 'POST' && req.url === '/token') {

Exec Callcritical

exec_call

System command execution

Line 1598

Snippets

L1598 const proc = spawn('npx', ['localtunnel', '--port', String(localPort)], {

L1644 const proc = spawn('cloudflared', ['tunnel', '--url', `http://localhost:${localPort}`], {

L1692 const ip = execSync('tailscale ip -4 2>/dev/null', { timeout: 3000 }).toString().trim();

Privilege Escalationcritical

privilege_escalation

Privilege escalation attempt

Line 363

Snippets

L363sudo tailscale up

Install Scripthigh

install_script

Third-party install script executed on the fly

Line 360

Snippets

L360curl -fsSL https://tailscale.com/install.sh | sh

Fs Writehigh

fs_write

Filesystem write access

Line 608

Snippets

L608 fs.writeFileSync(outPath, annotated);

L1513 fs.writeFileSync(tokenFile, token);

Network Callhigh

network_call

Outbound network call

Line 360

Snippets

L360curl -fsSL https://tailscale.com/install.sh | sh

L1124 http.get(`http://127.0.0.1:${port}/json/version`, (res) => {

L1138 http.get(`http://127.0.0.1:${port}/json/list`, (res) => {

L360curl -fsSL https://tailscale.com/install.sh | sh

Fs Readmedium

fs_read

Filesystem read access

Line 938

Snippets

L938 const html = fs.readFileSync(TEMPLATE, 'utf-8')

L1489 template = fs.readFileSync(templateFile, 'utf-8');

Websocketmedium

websocket

WebSocket connection

Line 873

Snippets

L873 this.ws = new WebSocket(this.wsUrl, { perMessageDeflate: false });

L1153 const ws = new WebSocket(wsUrl, { perMessageDeflate: false });

L1183 this.ws = new WebSocket(this.wsUrl, { perMessageDeflate: false });

Voir les risques detectes

Connectez-vous pour consulter l'analyse detaillee des risques.

$npx agentfend install cmn92mghq0045u1ip8qvz34gy

Trust Score

20trust

⭐ 3,5 k🍴 987

Mis a jour il y a 2 semaines

Analyse le

31 mars 2026, 15:58

+ 2 previous scans

Compatible avec

OCOpenClawClaude

Skill details

Trust score

20/100

GitHub

Connected

Stars

3,5 k

Forks

987

Mis a jour il y a 2 semaines

Analyse le 31 mars 2026, 15:58

Description

"Human-in-the-loop CAPTCHA solving with two modes: screenshot (default, zero infrastructure) and token relay (requires network access). Screenshot mode captures the page with a grid overlay, sends it to the human, and injects clicks based on their reply. Token relay mode detects CAPTCHA type + sitekey, serves the real widget on...

Voir la source

Scans recents

31 mars 2026, 15:58

Latest analysis

31 mars 2026, 15:11

Run 2

27 mars 2026, 15:43

Run 1