Habilidades thinking-deeply Historial de auditorías
📦

Historial de auditorías

thinking-deeply - 5 auditorías

Versión de auditoría 5

Más reciente Seguro

Jun 28, 2026, 05:56 PM

AI review found no confirmed security risks in the three scanned files. The static blocker findings are false positives from Markdown, JSON metadata, examples, and documentation links. No prompt injection, executable code, shell execution, cryptography, or data exfiltration behavior was found.

3
Archivos escaneados
629
Líneas analizadas
4
hallazgos
codex
Auditado por
Problemas de riesgo bajo (4)
False Positive: Weak Cryptographic Algorithm
Static analysis flagged weak cryptography, but the referenced lines contain skill descriptions, examples, or prior audit text. No cryptographic API, hashing code, encryption code, or executable script is present.
False Positive: System Reconnaissance
Static analysis flagged reconnaissance, but the referenced lines discuss considering perspectives, context, teams, and documentation examples. They do not request host enumeration, environment inspection, file discovery, or credential collection.
False Positive: Shell Backtick Execution
Static analysis flagged Ruby or shell backticks in README.md. The backticks are Markdown formatting for a directory tree, a filename, and a YAML example, not executable Ruby or shell code.
False Positive: Hardcoded Documentation URLs
Static analysis flagged hardcoded URLs in README.md. The URLs are passive documentation links to Claude support, Claude Skills documentation, and Anthropic research, not runtime network requests.

Versión de auditoría 4

Seguro

Jan 16, 2026, 08:33 PM

All 45 static findings are false positives. This skill contains only Markdown documentation files (SKILL.md, README.md) with prompt instructions. No executable code, scripts, network operations, or system access exists. Static scanner incorrectly flagged Markdown code formatting as Ruby backtick execution, documentation URLs as malicious network calls, and analytical thinking instructions as system reconnaissance.

4
Archivos escaneados
870
Líneas analizadas
2
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 3

Seguro

Jan 16, 2026, 08:33 PM

All 45 static findings are false positives. This skill contains only Markdown documentation files (SKILL.md, README.md) with prompt instructions. No executable code, scripts, network operations, or system access exists. Static scanner incorrectly flagged Markdown code formatting as Ruby backtick execution, documentation URLs as malicious network calls, and analytical thinking instructions as system reconnaissance.

4
Archivos escaneados
870
Líneas analizadas
2
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 2

Seguro

Jan 11, 2026, 01:15 PM

This skill is a pure prompt template containing only Markdown documentation. Static findings are all false positives: the analyzer incorrectly flagged Markdown inline code formatting as Ruby backtick execution, documentation URLs as malicious network calls, and analytical thinking references as system reconnaissance. No executable code, scripts, or network operations exist.

2
Archivos escaneados
366
Líneas analizadas
2
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Versión de auditoría 1

Seguro

Jan 11, 2026, 01:15 PM

This skill is a pure prompt template containing only Markdown documentation. Static findings are all false positives: the analyzer incorrectly flagged Markdown inline code formatting as Ruby backtick execution, documentation URLs as malicious network calls, and analytical thinking references as system reconnaissance. No executable code, scripts, or network operations exist.

2
Archivos escaneados
366
Líneas analizadas
2
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad