Audit-Verlauf - documentation

Audit-Version 5

Neueste Sicher

Jan 16, 2026, 11:45 PM

All 805 static findings are false positives. The analyzer flagged markdown documentation showing example shell commands and technical keywords as security risks. Actual shell scripts are legitimate documentation utilities using standard Unix tools.

28

Gescannte Dateien

4,872

Analysierte Zeilen

1

befunde

claude

Auditiert von

Keine Sicherheitsprobleme gefunden

Risikofaktoren

⚙️ Externe Befehle (4)

SKILL.md:37-187 references/rules.md:10-346 assets/templates/architecture.md:3-140 scripts/README.md:19-322

Audit-Version 4

Sicher

Jan 16, 2026, 11:45 PM

All 805 static findings are false positives. The analyzer flagged markdown documentation showing example shell commands and technical keywords as security risks. Actual shell scripts are legitimate documentation utilities using standard Unix tools.

28

Gescannte Dateien

4,872

Analysierte Zeilen

1

befunde

claude

Auditiert von

Keine Sicherheitsprobleme gefunden

Risikofaktoren

⚙️ Externe Befehle (4)

SKILL.md:37-187 references/rules.md:10-346 assets/templates/architecture.md:3-140 scripts/README.md:19-322

Audit-Version 3

Niedriges Risiko

Jan 10, 2026, 01:42 PM

Documentation management skill with shell scripts for section-level file operations. All scripts operate only on markdown files within the docs directory using safe text processing utilities. No network activity or sensitive system access detected.

14

Gescannte Dateien

2,449

Analysierte Zeilen

4

befunde

claude

Auditiert von

Probleme mit mittlerem Risiko (1)

scripts/doc-update-section.sh:79-80 scripts/doc-insert-after.sh:77-78 scripts/doc-delete-section.sh:54-55

File write operations in scripts

Scripts use 'mv' to replace files and 'mktemp' for temp files during write operations. Example from doc-update-section.sh line 80: 'mv "$TEMP_FILE" "$FILE"'. This is standard practice for atomic file replacement but could be misused if user provides malicious paths. The skill relies on user-provided file paths and does not implement path validation beyond file existence checks.

Probleme mit niedrigem Risiko (1)

scripts/doc-find-duplicates.sh:26 scripts/doc-update-section.sh:28 scripts/doc-insert-after.sh:28 scripts/doc-delete-section.sh:22

Temporary file creation with mktemp

Scripts create temporary files using 'mktemp' for safe file operations. While generally safe, the temp files are created in system temp directory. Example from doc-find-duplicates.sh line 26: 'TEMP_DIR=$(mktemp -d)'. No sensitive data is written to these temp files.

Risikofaktoren

⚡ Enthält Skripte (8)

scripts/doc-find-duplicates.sh:1-59 scripts/doc-delete-section.sh:1-58 scripts/doc-get-section.sh:1-56 scripts/doc-insert-after.sh:1-81 scripts/doc-metadata.sh:1-55 scripts/doc-search.sh:1-22 scripts/doc-list-sections.sh:1-35 scripts/doc-update-section.sh:1-83

📁 Dateisystemzugriff (3)

scripts/doc-update-section.sh:28-30 scripts/doc-insert-after.sh:28-30 scripts/doc-delete-section.sh:22

Audit-Version 2

Niedriges Risiko

Jan 10, 2026, 01:42 PM

Documentation management skill with shell scripts for section-level file operations. All scripts operate only on markdown files within the docs directory using safe text processing utilities. No network activity or sensitive system access detected.

14

Gescannte Dateien

2,449

Analysierte Zeilen

4

befunde

claude

Auditiert von

Probleme mit mittlerem Risiko (1)

scripts/doc-update-section.sh:79-80 scripts/doc-insert-after.sh:77-78 scripts/doc-delete-section.sh:54-55

File write operations in scripts

Scripts use 'mv' to replace files and 'mktemp' for temp files during write operations. Example from doc-update-section.sh line 80: 'mv "$TEMP_FILE" "$FILE"'. This is standard practice for atomic file replacement but could be misused if user provides malicious paths. The skill relies on user-provided file paths and does not implement path validation beyond file existence checks.

Probleme mit niedrigem Risiko (1)

scripts/doc-find-duplicates.sh:26 scripts/doc-update-section.sh:28 scripts/doc-insert-after.sh:28 scripts/doc-delete-section.sh:22

Temporary file creation with mktemp

Scripts create temporary files using 'mktemp' for safe file operations. While generally safe, the temp files are created in system temp directory. Example from doc-find-duplicates.sh line 26: 'TEMP_DIR=$(mktemp -d)'. No sensitive data is written to these temp files.

Risikofaktoren

⚡ Enthält Skripte (8)

scripts/doc-find-duplicates.sh:1-59 scripts/doc-delete-section.sh:1-58 scripts/doc-get-section.sh:1-56 scripts/doc-insert-after.sh:1-81 scripts/doc-metadata.sh:1-55 scripts/doc-search.sh:1-22 scripts/doc-list-sections.sh:1-35 scripts/doc-update-section.sh:1-83

📁 Dateisystemzugriff (3)

scripts/doc-update-section.sh:28-30 scripts/doc-insert-after.sh:28-30 scripts/doc-delete-section.sh:22

Audit-Version 1

Niedriges Risiko

Jan 10, 2026, 01:42 PM

Documentation management skill with shell scripts for section-level file operations. All scripts operate only on markdown files within the docs directory using safe text processing utilities. No network activity or sensitive system access detected.

14

Gescannte Dateien

2,449

Analysierte Zeilen

4

befunde

claude

Auditiert von

Probleme mit mittlerem Risiko (1)

scripts/doc-update-section.sh:79-80 scripts/doc-insert-after.sh:77-78 scripts/doc-delete-section.sh:54-55

File write operations in scripts

Scripts use 'mv' to replace files and 'mktemp' for temp files during write operations. Example from doc-update-section.sh line 80: 'mv "$TEMP_FILE" "$FILE"'. This is standard practice for atomic file replacement but could be misused if user provides malicious paths. The skill relies on user-provided file paths and does not implement path validation beyond file existence checks.

Probleme mit niedrigem Risiko (1)

scripts/doc-find-duplicates.sh:26 scripts/doc-update-section.sh:28 scripts/doc-insert-after.sh:28 scripts/doc-delete-section.sh:22

Temporary file creation with mktemp

Scripts create temporary files using 'mktemp' for safe file operations. While generally safe, the temp files are created in system temp directory. Example from doc-find-duplicates.sh line 26: 'TEMP_DIR=$(mktemp -d)'. No sensitive data is written to these temp files.

Risikofaktoren

⚡ Enthält Skripte (8)

scripts/doc-find-duplicates.sh:1-59 scripts/doc-delete-section.sh:1-58 scripts/doc-get-section.sh:1-56 scripts/doc-insert-after.sh:1-81 scripts/doc-metadata.sh:1-55 scripts/doc-search.sh:1-22 scripts/doc-list-sections.sh:1-35 scripts/doc-update-section.sh:1-83

📁 Dateisystemzugriff (3)

scripts/doc-update-section.sh:28-30 scripts/doc-insert-after.sh:28-30 scripts/doc-delete-section.sh:22