Habilidades error-logger Historial de auditorías
📦

Historial de auditorías

error-logger - 7 auditorías

Versión de auditoría 7

Más reciente Seguro

Jun 28, 2026, 12:46 PM

Static findings were reviewed against the single skill file. The external command, weak cryptography, and reconnaissance detections are false positives from Markdown examples and descriptive text, with no executable code or prompt injection found.

1
Archivos escaneados
69
Líneas analizadas
3
hallazgos
codex
Auditado por
Problemas de riesgo bajo (3)
False Positive: Markdown Examples Flagged as External Commands
The reported Ruby or shell backtick detections occur in Markdown code fences and inline formatting. The file contains JSON and TypeScript examples only, with no executable shell command.
False Positive: Weak Cryptography Detection
The flagged description line references correlation IDs and error tracing, not a weak cryptographic algorithm. No hashing, encryption, or random generation implementation is present.
False Positive: System Reconnaissance Detection
The flagged line shows propagation of an X-Correlation-ID HTTP header. It does not gather host, user, network, or system information.

Versión de auditoría 6

Seguro

Jan 21, 2026, 02:45 PM

All static findings evaluated as false positives. SHA256 hashes flagged as weak crypto are secure cryptographic values in metadata. Backtick references in documentation are markdown formatting, not shell execution. This is a legitimate logging library skill with no malicious code or operations.

2
Archivos escaneados
373
Líneas analizadas
2
hallazgos
claude
Auditado por

Problemas de riesgo alto (1)

External commands (false positive)
Backtick patterns in SKILL.md documentation were flagged as shell execution. These are markdown code block delimiters and correlation ID format examples, not Ruby or shell command execution.

Versión de auditoría 5

Riesgo medio

Jan 16, 2026, 05:53 PM

AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.

2
Archivos escaneados
250
Líneas analizadas
1
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Patrones detectados

Weak cryptographic algorithmSystem reconnaissanceRuby/shell backtick execution

Versión de auditoría 4

Riesgo medio

Jan 16, 2026, 05:53 PM

AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.

2
Archivos escaneados
250
Líneas analizadas
1
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Patrones detectados

Weak cryptographic algorithmSystem reconnaissanceRuby/shell backtick execution

Versión de auditoría 3

Seguro

Jan 10, 2026, 11:07 AM

Pure documentation skill containing only a SKILL.md file with logging pattern guidelines. No executable code, network operations, file access, or system capabilities. This is a safe, read-only reference skill.

1
Archivos escaneados
69
Líneas analizadas
0
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 2

Seguro

Jan 10, 2026, 11:07 AM

Pure documentation skill containing only a SKILL.md file with logging pattern guidelines. No executable code, network operations, file access, or system capabilities. This is a safe, read-only reference skill.

1
Archivos escaneados
69
Líneas analizadas
0
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 1

Seguro

Jan 10, 2026, 11:07 AM

Pure documentation skill containing only a SKILL.md file with logging pattern guidelines. No executable code, network operations, file access, or system capabilities. This is a safe, read-only reference skill.

1
Archivos escaneados
69
Líneas analizadas
0
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad