Historial de auditorías
full-review - 7 auditorías
Versión de auditoría 7
Más reciente Riesgo bajoJun 28, 2026, 12:48 PM
Static analysis flagged many command and blocker patterns, but most are Markdown examples, inline file globs, checklist text, or report-format placeholders. The only confirmed behavior is read-only local git inspection with stderr redirected to /dev/null, which is expected for a code review skill and shows no network, credential access, or prompt-injection attempt.
Problemas de riesgo bajo (3)
Factores de riesgo
⚙️ Comandos externos (1)
📁 Acceso al sistema de archivos (1)
Patrones detectados
Versión de auditoría 6
SeguroJan 21, 2026, 02:46 PM
All static analysis findings are false positives. The skill is documentation-only (SKILL.md) describing a legitimate code review workflow. Backticks flagged as shell execution are markdown code formatting. Numeric values flagged as weak crypto are JSON array indices. No executable code exists that poses security risks.
Factores de riesgo
📁 Acceso al sistema de archivos (1)
⚙️ Comandos externos (30)
Versión de auditoría 5
Riesgo medioJan 16, 2026, 05:59 PM
AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.
Factores de riesgo
📁 Acceso al sistema de archivos (1)
⚙️ Comandos externos (30)
Patrones detectados
Versión de auditoría 4
Riesgo medioJan 16, 2026, 05:59 PM
AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.
Factores de riesgo
📁 Acceso al sistema de archivos (1)
⚙️ Comandos externos (30)
Patrones detectados
Versión de auditoría 3
SeguroJan 10, 2026, 11:08 AM
This skill consists solely of documentation and prompt guidance for performing code reviews. No executable code, scripts, network calls, or filesystem operations are defined. The skill describes using git commands for change detection, which is expected behavior for a code review tool.
Versión de auditoría 2
SeguroJan 10, 2026, 11:08 AM
This skill consists solely of documentation and prompt guidance for performing code reviews. No executable code, scripts, network calls, or filesystem operations are defined. The skill describes using git commands for change detection, which is expected behavior for a code review tool.
Versión de auditoría 1
SeguroJan 10, 2026, 11:08 AM
This skill consists solely of documentation and prompt guidance for performing code reviews. No executable code, scripts, network calls, or filesystem operations are defined. The skill describes using git commands for change detection, which is expected behavior for a code review tool.