ecc-tools-cost-audit
Facilitates cost auditing workflows for ECC tools, addressing PR creation, quota bypass, and billing issues effectively.
Install this skill
or
75/100
Security score
The ecc-tools-cost-audit skill was audited on May 24, 2026 and we found 5 security issues across 1 threat category. Review the findings below before installing.
Categories Tested
Security Issues
medium line 17
Webhook reference - potential data exfiltration
SourceSKILL.md
| 17 | * `autonomous-loops` 用于跨 webhook、队列、计费和重试的有界多步骤审计 |
medium line 28
Webhook reference - potential data exfiltration
SourceSKILL.md
| 28 | * 任务位于兄弟仓库 `ECC-Tools` 中,并依赖于 webhook 处理器、队列 worker、使用预留、PR 创建逻辑或付费网关强制执行 |
medium line 49
Webhook reference - potential data exfiltration
SourceSKILL.md
| 49 | * webhook 路由器 |
medium line 138
Webhook reference - potential data exfiltration
SourceSKILL.md
| 138 | ### 4. 应用生成的分支重新进入 Webhook |
medium line 148
Webhook reference - potential data exfiltration
SourceSKILL.md
| 148 | * 不要一开始就广泛浏览仓库;先确定 webhook -> 队列 -> worker 的路径 |
Scanned on May 24, 2026
View Security DashboardRate this skill
Categorydata analytics
UpdatedJune 15, 2026
openclawbackendapidata-analystbackend-developergrowth-marketergithubdata analyticsdevelopmentmarketing
quyendang1994/Giapha