Fähigkeiten zentao-task-planner Audit-Verlauf
📦

Audit-Verlauf

zentao-task-planner - 4 Audits

Audit-Version 4

Neueste Mittleres Risiko

Jun 28, 2026, 10:48 AM

Static findings are partly confirmed: this skill intentionally runs local Python scripts, reads ZenTao credentials from environment files, and makes authenticated requests to a configured ZenTao server. I found no prompt injection attempt or evidence of malicious third-party exfiltration, but the credential handling and state-changing task operations require clear user review and warnings.

18
Gescannte Dateien
2,109
Analysierte Zeilen
11
befunde
codex
Auditiert von
Probleme mit mittlerem Risiko (3)
references/commands.md:7-11scripts/zentao_common.py:133-158scripts/zentao_common.py:372-377
ZenTao Credentials Loaded and Sent to Configured Server
TRUE POSITIVE: The skill documents ZenTao account variables, loads .env files, reads ZENTAO_BASE_URL, ZENTAO_ACCOUNT, and ZENTAO_PASSWORD, and posts the account and password to the configured ZenTao login endpoint. This is expected for the skill, but it exposes sensitive credentials to local files and network transport controlled by configuration.
SKILL.md:15-24scripts/create_tasks.py:31-39scripts/finish_tasks_by_date.py:39-46scripts/repair_task_finish_date.py:28-34scripts/close_finished_tasks.py:21-25scripts/zentao_common.py:827-841scripts/zentao_common.py:981-1004scripts/zentao_common.py:1208-1215scripts/zentao_common.py:1251-1264
Authenticated Scripts Can Mutate ZenTao Task State
TRUE POSITIVE: The skill includes scripts and client methods that can create tasks, finish tasks, repair effort dates, activate tasks, and close finished tasks. The documentation and command flags require preview or dry-run behavior before --execute, so this is not malicious, but accidental execution can alter external project records.
references/commands.md:21-23scripts/create_tasks.py:17-21scripts/zentao_common.py:101-122scripts/zentao_common.py:133-143
Local File Inputs and .env Storage Require Data Hygiene
TRUE POSITIVE: The scripts can read task plans, username mappings, JSON input files, and .env files from local paths. This is normal for a task-planning workflow, but users should avoid storing broad secrets or unreviewed project data in shared skill directories.
Probleme mit niedrigem Risiko (3)
references/workdays.md:17-24references/create-tasks.md:27-35references/finish-tasks.md:28-35references/repair-finish-date.md:29-37SKILL.md:12-20
Markdown Command Examples Misidentified as Ruby Backticks
FALSE POSITIVE: Many external-command findings are fenced bash examples or inline script names in Markdown documentation. They describe how a user can run local Python scripts and do not contain Ruby backtick execution syntax.
scripts/zentao_common.py:29-47scripts/zentao_common.py:568-578scripts/zentao_common.py:821-824references/repair-finish-date.md:23
Weak Cryptography and Reconnaissance Flags Are Scanner Noise
FALSE POSITIVE: The cited areas include task-type constants, UUID form fields, regex parsing, and ZenTao form field names rather than cryptographic algorithms or network scanning tools. I did not find evidence of hashing secrets, evasion, port scanning, or system reconnaissance intent.
references/commands.md:1-23references/plan-task.md:1-25references/repair-finish-date.md:1-24
High Entropy Markdown Findings Are Benign Content
FALSE POSITIVE: The high-entropy Markdown files contain Chinese instructions, TSV examples, command examples, and environment variable samples. I found no encoded payload or obfuscated executable content in the inspected references.

Risikofaktoren

⚡ Enthält Skripte (5)
SKILL.md:12-20 scripts/create_tasks.py:15-23 scripts/finish_tasks_by_date.py:10-28 scripts/repair_task_finish_date.py:10-18 scripts/close_finished_tasks.py:10-15
🌐 Netzwerkzugriff (6)
references/commands.md:7-11 scripts/zentao_common.py:357-377 scripts/zentao_common.py:416-439 scripts/zentao_common.py:827-841 scripts/zentao_common.py:852-866 scripts/zentao_common.py:1017-1035
📁 Dateisystemzugriff (4)
references/commands.md:21-23 scripts/create_tasks.py:17-21 scripts/zentao_common.py:101-122 scripts/zentao_common.py:133-143
🔑 Umgebungsvariablen (4)
references/commands.md:7-11 scripts/zentao_common.py:133-158 scripts/create_tasks.py:19-21 scripts/list_tasks.py:46
⚙️ Externe Befehle (5)
references/workdays.md:17-24 references/create-tasks.md:27-35 references/finish-tasks.md:28-35 references/repair-finish-date.md:29-37 SKILL.md:22-26

Erkannte Muster

dotenv Credential LoadingCredentialed HTTP Session RequestsExecute-Gated External State Changes

Audit-Version 3

Mittleres Risiko

May 7, 2026, 09:15 AM

This is a legitimate Zentao task management integration skill. Static analysis flagged 200 potential issues, but evaluation reveals most are false positives. The reference markdown files show command examples with backtick syntax (not actual code execution). Python system calls like getpass.getuser() and os.path operations are standard path handling, not reconnaissance. Network access is limited to user-configured Zentao instances. Credentials are properly loaded from environment variables with no hardcoded secrets. The skill includes standard safety patterns: preview-only mode with --execute flag, user confirmation required for destructive operations, no arbitrary command injection.

19
Gescannte Dateien
2,113
Analysierte Zeilen
10
befunde
claude
Auditiert von

Probleme mit hohem Risiko (1)

scripts/zentao_common.py:32scripts/zentao_common.py:38-47scripts/zentao_common.py:68scripts/zentao_common.py:443
MD5 Usage in Codebase
MD5 cryptographic algorithm usage detected in zentao_common.py at multiple locations (lines 32, 38, 41, 42, 44, 47, 68, 443, 765, 772, 787, 812, 911). MD5 is cryptographically weak but appears to be used for non-security purposes like generating unique IDs for form submissions (uuid.uuid4()) rather than password hashing or credential protection.
Probleme mit mittlerem Risiko (2)
scripts/zentao_common.py:156-158
Environment Variable Credential Access
Skill reads ZENTAO_PASSWORD from environment variables. While this is standard secure practice, users should be warned to never commit .env files containing credentials to version control.
scripts/zentao_common.py:364-394scripts/zentao_common.py:465
Network Access to User-Configured Zentao Instance
Scripts make HTTP requests to user-specified Zentao server URL. Network access is intentional functionality for task management integration, not data exfiltration.
Probleme mit niedrigem Risiko (5)
references/close-tasks.md:3-30references/commands.md:7-25
Static Analysis False Positive: External Commands
Reference markdown files contain command examples using backtick syntax (markdown code formatting), not actual Ruby/shell backtick execution. No command injection vulnerability exists.
scripts/zentao_common.py:8scripts/zentao_common.py:139
Static Analysis False Positive: System Reconnaissance
Code flagged as 'system reconnaissance' uses legitimate Python system calls: getpass.getuser(), os.path.expanduser(), pathlib.Path().resolve(). These are standard operations for path handling and user identification.
references/commands.md:21
Static Analysis False Positive: Hidden File Access
.env file access is legitimate configuration loading for Zentao credentials. This is standard practice for credential management.
scripts/zentao_common.py:401
Static Analysis False Positive: Unicode Escape Sequence
BOM (Byte Order Mark)  at line 401 is a UTF-8 encoding marker, not malicious obfuscation. Used for handling Chinese character encoding.
references/commands.md:1references/plan-task.md:1
Static Analysis False Positive: High File Entropy
Heuristic flagging of reference markdown files as 'binary/encrypted content' based on entropy. This is likely due to special characters in Chinese text, not actual encrypted content.

Risikofaktoren

🌐 Netzwerkzugriff (1)
scripts/zentao_common.py:364-394
⚡ Enthält Skripte (2)
scripts/create_tasks.py:7-12 scripts/list_tasks.py:9

Audit-Version 2

Niedriges Risiko

May 6, 2026, 06:26 AM

Scanned 17 files (1770 lines). Static analyzer flagged 173 patterns, but extensive manual review confirms this is a legitimate Zentao task management skill with mostly false positive detections. The skill operates on user-configured self-hosted Zentao instances only, uses environment variables for credentials (standard pattern), and all modifications require explicit user confirmation with --execute flag. No malicious intent or exfiltration behavior detected.

17
Gescannte Dateien
1,770
Analysierte Zeilen
8
befunde
claude
Auditiert von
Probleme mit mittlerem Risiko (2)
.env.example:1references/commands.md:8
Hardcoded Zentao URL Pattern in Documentation
Documentation files reference example Zentao URLs (https://your-zentao-instance.com/zentao/). These are placeholder examples, not actual connections. The skill requires users to configure their own Zentao instance URL in .env file.
scripts/zentao_common.py:156-158
Environment Variable Access for Credential Management
Scripts access environment variables (ZENTAO_BASE_URL, ZENTAO_ACCOUNT, ZENTAO_PASSWORD) to authenticate with user's own Zentao instance. This is a standard and expected pattern for configuration-based credentials.
Probleme mit niedrigem Risiko (3)
scripts/zentao_common.py:364scripts/zentao_common.py:394
Python HTTP Requests Library Usage
Uses requests library for HTTP communication with Zentao API. Standard Python networking library with no malicious capabilities.
references/close-tasks.md:3references/list-tasks.md:14-51
Bash Command Examples in Markdown Documentation
Documentation files contain Bash commands prefixed with `$` in markdown code blocks. These are user-facing examples for documentation, not actual shell execution in the skill code.
scripts/zentao_common.py:16scripts/zentao_common.py:143
Python dotenv Library for Configuration Loading
Uses python-dotenv to load configuration from .env files. Standard configuration pattern for storing credentials locally.

Risikofaktoren

🌐 Netzwerkzugriff (4)
.env.example:1 references/commands.md:8 scripts/zentao_common.py:364 scripts/zentao_common.py:394
🔑 Umgebungsvariablen (3)
scripts/zentao_common.py:156-158 scripts/zentao_common.py:16 scripts/zentao_common.py:143
⚡ Enthält Skripte (1)
scripts/create_tasks.py:7-12

Audit-Version 1

Niedriges Risiko

Apr 27, 2026, 06:22 AM

This is a legitimate ZenTao task management integration skill. Static analysis flagged 160 potential issues, but evaluation confirms these are mostly false positives. The skill legitimately accesses .env files for credential storage (required for ZenTao authentication) and makes HTTP requests to a user-configured ZenTao instance (core functionality). No prompt injection or malicious intent detected.

15
Gescannte Dateien
1,692
Analysierte Zeilen
8
befunde
claude
Auditiert von

Probleme mit hohem Risiko (1)

scripts/zentao_common.py:156-158scripts/zentao_common.py:133-143
Environment Credential Storage
Skill reads ZenTao credentials from .env files. Credentials are required for ZenTao API authentication and stored locally per user configuration.
Probleme mit mittlerem Risiko (1)
scripts/zentao_common.py:372-388scripts/zentao_common.py:678-693
External HTTP Requests to User-Configured Endpoint
Skill makes HTTP requests to a ZenTao instance URL configured by the user in environment variables.
Probleme mit niedrigem Risiko (3)
scripts/zentao_common.py:29-90
Static Analysis False Positives - Chinese Text Strings Misidentified as Crypto
The static scanner flagged Chinese task type names (e.g., '产品方案设计') as 'weak cryptographic algorithms' due to character pattern matching. No actual cryptographic operations are performed.
references/commands.md:1-25references/list-tasks.md:1-54references/create-tasks.md:1-36
Static Analysis False Positives - Markdown Code Examples Flagged as Execution
Backtick syntax in markdown documentation files (references/*.md) was flagged as 'Ruby/shell backtick execution'. These are markdown inline code formatting, not actual shell commands.
references/commands.md:1-25references/plan-task.md:1-25SKILL.md:1-36
High File Entropy in Markdown Files
Several markdown files show high entropy readings due to dense Chinese technical documentation, not encrypted or obfuscated content.

Risikofaktoren

🌐 Netzwerkzugriff (2)
scripts/zentao_common.py:364 scripts/zentao_common.py:374-377
🔑 Umgebungsvariablen (1)
scripts/zentao_common.py:156-158
⚡ Enthält Skripte (3)
scripts/list_tasks.py:1-128 scripts/create_tasks.py:1-46 scripts/close_finished_tasks.py:1-32
← Zurück zum Skill