Audit-Verlauf
github-issues - 6 Audits
Audit-Version 6
Neueste Mittleres RisikoJun 28, 2026, 07:27 PM
Static analysis produced many high-risk pattern matches, but targeted review found Markdown examples and maintainer workflow guidance rather than hidden executable code or malicious intent. The skill is publishable with a medium warning because it guides state-changing gh and git commands and includes limited external documentation lookup.
Probleme mit mittlerem Risiko (1)
Probleme mit niedrigem Risiko (3)
Risikofaktoren
⚙️ Externe Befehle (11)
🌐 Netzwerkzugriff (2)
Erkannte Muster
Audit-Version 5
SicherJan 16, 2026, 08:25 PM
This skill is pure documentation containing only markdown workflows, templates, and CLI command examples for GitHub issue management. All 262 static findings are FALSE POSITIVES. The flagged patterns are bash documentation examples (not executable Ruby/shell code), standard git/gh CLI commands for legitimate operations, and harmless documentation URLs. No executable code, scripts, or malicious operations exist.
Risikofaktoren
⚙️ Externe Befehle (218)
🌐 Netzwerkzugriff (1)
Audit-Version 4
SicherJan 16, 2026, 08:25 PM
This skill is pure documentation containing only markdown workflows, templates, and CLI command examples for GitHub issue management. All 262 static findings are FALSE POSITIVES. The flagged patterns are bash documentation examples (not executable Ruby/shell code), standard git/gh CLI commands for legitimate operations, and harmless documentation URLs. No executable code, scripts, or malicious operations exist.
Risikofaktoren
⚙️ Externe Befehle (218)
🌐 Netzwerkzugriff (1)
Audit-Version 3
SicherJan 10, 2026, 11:53 AM
Pure prompt-based skill containing only documentation and workflow instructions. No executable code, scripts, or network operations. Uses standard gh CLI commands documented in plain text. Capabilities directly match stated purpose of GitHub issues management.
Audit-Version 2
SicherJan 10, 2026, 11:53 AM
Pure prompt-based skill containing only documentation and workflow instructions. No executable code, scripts, or network operations. Uses standard gh CLI commands documented in plain text. Capabilities directly match stated purpose of GitHub issues management.
Audit-Version 1
SicherJan 10, 2026, 11:53 AM
Pure prompt-based skill containing only documentation and workflow instructions. No executable code, scripts, or network operations. Uses standard gh CLI commands documented in plain text. Capabilities directly match stated purpose of GitHub issues management.