Habilidades allra-database-schema Historial de auditorías
📦

Historial de auditorías

allra-database-schema - 6 auditorías

Versión de auditoría 6

Más reciente Seguro

Jun 28, 2026, 09:26 AM

Static analysis reported external command, network, weak crypto, and reconnaissance patterns, but review found these are false positives in Markdown documentation and Java examples. No executable scripts, network endpoints, credential handling, prompt injection attempts, or malicious intent were found in SKILL.md.

1
Archivos escaneados
309
Líneas analizadas
4
hallazgos
codex
Auditado por
Problemas de riesgo bajo (4)
External Command Findings Dismissed
The reported Ruby or shell backtick execution locations are Markdown fences, inline code formatting, or Java, Gradle, and XML examples. They do not execute commands and do not create a command injection path.
Network Fetch Findings Dismissed
The reported fetch locations are QueryDSL .fetch() terminal methods in Java examples. They do not call a network Fetch API or send data to an external service.
Weak Crypto Finding Dismissed
The weak cryptographic algorithm alert on the frontmatter description appears to match ordinary text about database schema guidance. No cryptographic algorithm or crypto API usage appears at this location.
System Reconnaissance Findings Dismissed
The reported reconnaissance locations are Java entity business methods inside example domain code. They do not inspect the host, enumerate files, read environment values, or collect system metadata.

Versión de auditoría 5

Seguro

Jan 16, 2026, 03:14 PM

Documentation-only skill containing coding standards and guidelines for Java/Spring Boot database development. All 46 static findings are false positives caused by the scanner misidentifying code examples in markdown documentation as executable code, and hash/metadata values triggering pattern matches. No actual executable code, no file system access, no network calls, and no system modifications.

2
Archivos escaneados
489
Líneas analizadas
2
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 4

Seguro

Jan 16, 2026, 03:14 PM

Documentation-only skill containing coding standards and guidelines for Java/Spring Boot database development. All 46 static findings are false positives caused by the scanner misidentifying code examples in markdown documentation as executable code, and hash/metadata values triggering pattern matches. No actual executable code, no file system access, no network calls, and no system modifications.

2
Archivos escaneados
489
Líneas analizadas
2
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 3

Seguro

Jan 10, 2026, 10:17 AM

Documentation-only skill containing coding standards and guidelines for Java/Spring Boot database development. No executable code, no file access, no network calls, no system modifications.

1
Archivos escaneados
309
Líneas analizadas
0
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 2

Seguro

Jan 10, 2026, 10:17 AM

Documentation-only skill containing coding standards and guidelines for Java/Spring Boot database development. No executable code, no file access, no network calls, no system modifications.

1
Archivos escaneados
309
Líneas analizadas
0
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 1

Seguro

Jan 10, 2026, 10:17 AM

Documentation-only skill containing coding standards and guidelines for Java/Spring Boot database development. No executable code, no file access, no network calls, no system modifications.

1
Archivos escaneados
309
Líneas analizadas
0
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad