Historial de auditorías
matchms - 4 auditorías
Versión de auditoría 4
Más reciente SeguroJan 17, 2026, 06:24 AM
All 268 static findings are false positives. The analyzer incorrectly flagged markdown code blocks (backticks) as shell execution, InChIKey descriptions as cryptographic algorithms, scientific database URLs as network reconnaissance, and legitimate Python code examples as malicious patterns. Matchms is a legitimate open-source mass spectrometry library for metabolomics research.
Factores de riesgo
⚡ Contiene scripts (2)
⚙️ Comandos externos (3)
🌐 Acceso a red (3)
📁 Acceso al sistema de archivos (1)
Versión de auditoría 3
SeguroJan 17, 2026, 06:24 AM
All 268 static findings are false positives. The analyzer incorrectly flagged markdown code blocks (backticks) as shell execution, InChIKey descriptions as cryptographic algorithms, scientific database URLs as network reconnaissance, and legitimate Python code examples as malicious patterns. Matchms is a legitimate open-source mass spectrometry library for metabolomics research.
Factores de riesgo
⚡ Contiene scripts (2)
⚙️ Comandos externos (3)
🌐 Acceso a red (3)
📁 Acceso al sistema de archivos (1)
Versión de auditoría 2
SeguroJan 12, 2026, 05:08 PM
The static analyzer incorrectly flagged documentation code blocks as security issues. All findings are false positives - the 'weak cryptographic algorithm' and 'external commands' alerts stem from markdown documentation containing code examples and legitimate URLs to scientific resources. No actual security risks were found.
Factores de riesgo
⚡ Contiene scripts (1)
⚙️ Comandos externos (1)
🌐 Acceso a red (1)
Versión de auditoría 1
SeguroJan 4, 2026, 04:58 PM
Documentation-only skill containing markdown guides and code examples for the matchms Python library. No executable code, no credential access, no network exfiltration. Pure prompt-based guidance.