Habilidades ai-architect-lite Historial de auditorías
📦

Historial de auditorías

ai-architect-lite - 6 auditorías

Versión de auditoría 6

Más reciente Riesgo medio

Jun 28, 2026, 08:29 PM

Static analysis reported many high-risk patterns, but most are false positives from Markdown backticks, documentation examples, Chinese text entropy, and security guidance that mentions secrets. No prompt injection, network exfiltration, shell spawning, or credential access was found. The confirmed risk is local filesystem modification through bundled helper scripts, which is legitimate for this workflow but should be disclosed to users.

10
Archivos escaneados
749
Líneas analizadas
8
hallazgos
codex
Auditado por
Problemas de riesgo medio (2)
Local Filesystem Writes from Helper Scripts
The bundled helpers can create .ai_context/03_ACTIVE_TASK.md and write plan output to a user-selected path. This matches the skill purpose, but users should review paths before execution because local files can be created or overwritten.
User-Supplied Output Paths Need Review
The plan helper accepts an --out path and resolves it before writing. Its traversal check is not a strong project-root boundary, so a user-provided absolute path can target locations outside the current repository.
Problemas de riesgo bajo (3)
Static Shell Execution Matches Are Documentation Examples
The reported Ruby or shell backtick detections are Markdown inline code, fenced examples, or command examples. I did not find code that invokes a shell, subprocess, eval, or dynamic execution.
Network and Credential Static Matches Are False Positives
The network match is contribution text, and the environment-file match is security guidance warning users not to commit secrets. I did not find network requests or credential reads.
High Entropy Heuristics Are Caused by Multilingual Documentation
The high entropy findings occur in Markdown files containing Chinese text, symbols, and examples. No encoded payload, binary blob, or obfuscated code was found in those files.

Patrones detectados

File Creation and Overwrite APIs

Versión de auditoría 5

Riesgo medio

Jan 16, 2026, 08:58 PM

AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.

11
Archivos escaneados
1,028
Líneas analizadas
3
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Factores de riesgo

⚙️ Comandos externos (77)
🌐 Acceso a red (1)
📁 Acceso al sistema de archivos (4)

Patrones detectados

Ruby/shell backtick executionWeak cryptographic algorithmPython HTTP librariesSystem reconnaissanceEnvironment file accessPath traversal sequenceHidden file access[HEURISTIC] High file entropy (6.30 bits) - possible binary/encrypted content[HEURISTIC] High file entropy (7.04 bits) - possible binary/encrypted content[HEURISTIC] High file entropy (7.06 bits) - possible binary/encrypted content[HEURISTIC] DANGEROUS COMBINATION: Code execution + Network + Credential access[HEURISTIC] SUSPICIOUS COMBINATION: Filesystem + Credentials + Network

Versión de auditoría 4

Riesgo medio

Jan 16, 2026, 08:58 PM

AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.

11
Archivos escaneados
1,028
Líneas analizadas
3
hallazgos
claude
Auditado por
No se encontraron problemas de seguridad

Factores de riesgo

⚙️ Comandos externos (77)
🌐 Acceso a red (1)
📁 Acceso al sistema de archivos (4)

Patrones detectados

Ruby/shell backtick executionWeak cryptographic algorithmPython HTTP librariesSystem reconnaissanceEnvironment file accessPath traversal sequenceHidden file access[HEURISTIC] High file entropy (6.30 bits) - possible binary/encrypted content[HEURISTIC] High file entropy (7.04 bits) - possible binary/encrypted content[HEURISTIC] High file entropy (7.06 bits) - possible binary/encrypted content[HEURISTIC] DANGEROUS COMBINATION: Code execution + Network + Credential access[HEURISTIC] SUSPICIOUS COMBINATION: Filesystem + Credentials + Network

Versión de auditoría 3

Riesgo bajo

Jan 10, 2026, 12:02 PM

Pure prompt-based Claude skill with two local utility scripts. Scripts access local filesystem only within project root with proper path traversal protection. No network calls, no credential access, no external command execution. Minimal security footprint with Python standard library only.

11
Archivos escaneados
699
Líneas analizadas
2
hallazgos
claude
Auditado por
Problemas de riesgo bajo (1)
Local filesystem access in utility scripts
Both Python scripts access the local filesystem to create and write files within the project root. append_log.py creates `.ai_context/03_ACTIVE_TASK.md` and appends log entries. plan_helper.py writes plan templates to files. These operations include path traversal protection (lines 76-79 in plan_helper.py, lines 62-75 in append_log.py) and are scoped to the project directory as documented. This is necessary for the skill's purpose of maintaining project context.

Versión de auditoría 2

Riesgo bajo

Jan 10, 2026, 12:02 PM

Pure prompt-based Claude skill with two local utility scripts. Scripts access local filesystem only within project root with proper path traversal protection. No network calls, no credential access, no external command execution. Minimal security footprint with Python standard library only.

11
Archivos escaneados
699
Líneas analizadas
2
hallazgos
claude
Auditado por
Problemas de riesgo bajo (1)
Local filesystem access in utility scripts
Both Python scripts access the local filesystem to create and write files within the project root. append_log.py creates `.ai_context/03_ACTIVE_TASK.md` and appends log entries. plan_helper.py writes plan templates to files. These operations include path traversal protection (lines 76-79 in plan_helper.py, lines 62-75 in append_log.py) and are scoped to the project directory as documented. This is necessary for the skill's purpose of maintaining project context.

Versión de auditoría 1

Riesgo bajo

Jan 10, 2026, 12:02 PM

Pure prompt-based Claude skill with two local utility scripts. Scripts access local filesystem only within project root with proper path traversal protection. No network calls, no credential access, no external command execution. Minimal security footprint with Python standard library only.

11
Archivos escaneados
699
Líneas analizadas
2
hallazgos
claude
Auditado por
Problemas de riesgo bajo (1)
Local filesystem access in utility scripts
Both Python scripts access the local filesystem to create and write files within the project root. append_log.py creates `.ai_context/03_ACTIVE_TASK.md` and appends log entries. plan_helper.py writes plan templates to files. These operations include path traversal protection (lines 76-79 in plan_helper.py, lines 62-75 in append_log.py) and are scoped to the project directory as documented. This is necessary for the skill's purpose of maintaining project context.