Compétences add-core-function Historique des audits
📦

Historique des audits

add-core-function - 6 audits

Version de l’audit 6

Dernier Sûr

Jun 28, 2026, 10:25 AM

The static analyzer flagged Markdown backticks, relative TypeScript import examples, and the word description as security patterns. Manual review found no executable shell commands, no path traversal behavior, no weak cryptography, no network exfiltration, and no prompt injection attempts.

1
Fichiers analysés
147
Lignes analysées
3
résultats
codex
Audité par
Problèmes à risque faible (3)
SKILL.md:18SKILL.md:20-34SKILL.md:40-48SKILL.md:58-87SKILL.md:93-100SKILL.md:106-119SKILL.md:125-134SKILL.md:138-146
Markdown Backticks Misidentified as Shell Execution
Static findings for Ruby or shell backtick execution are false positives. The flagged lines are Markdown inline code, fenced directory examples, or TypeScript examples, not executable Ruby or shell code.
SKILL.md:45SKILL.md:51-54SKILL.md:61-62SKILL.md:94SKILL.md:140
Relative Import Paths Misidentified as Path Traversal
Static path traversal findings are false positives. The flagged paths are TypeScript import examples and project layout guidance for local source files.
SKILL.md:3SKILL.md:66
Weak Cryptography Pattern Misidentified
The weak cryptography findings at lines 3 and 66 are false positives. They match ordinary description text, not cryptographic algorithms or security-sensitive code.

Version de l’audit 5

Sûr

Jan 16, 2026, 05:16 PM

Pure documentation skill containing only TypeScript code examples and project conventions. All 54 static findings are false positives caused by the scanner misinterpreting documentation patterns as security issues. The skill provides no executable code, scripts, network access, or filesystem operations.

2
Fichiers analysés
327
Lignes analysées
2
résultats
claude
Audité par
Aucun problème de sécurité trouvé

Facteurs de risque

📁 Accès au système de fichiers (17)
SKILL.md:45 SKILL.md:45 SKILL.md:51 SKILL.md:52 SKILL.md:53 SKILL.md:53 SKILL.md:54 SKILL.md:54 SKILL.md:54 SKILL.md:61 SKILL.md:62 SKILL.md:62 SKILL.md:62 SKILL.md:94 SKILL.md:94 SKILL.md:94 SKILL.md:140
⚙️ Commandes externes (20)
SKILL.md:18 SKILL.md:20-34 SKILL.md:34-40 SKILL.md:40-48 SKILL.md:48-51 SKILL.md:51-52 SKILL.md:52-53 SKILL.md:53-54 SKILL.md:54-58 SKILL.md:58-87 SKILL.md:87-93 SKILL.md:93-100 SKILL.md:100-104 SKILL.md:104-106 SKILL.md:106-119 SKILL.md:119-123 SKILL.md:123-125 SKILL.md:125-134 SKILL.md:134-138 SKILL.md:138-146

Version de l’audit 4

Sûr

Jan 16, 2026, 05:16 PM

Pure documentation skill containing only TypeScript code examples and project conventions. All 54 static findings are false positives caused by the scanner misinterpreting documentation patterns as security issues. The skill provides no executable code, scripts, network access, or filesystem operations.

2
Fichiers analysés
327
Lignes analysées
2
résultats
claude
Audité par
Aucun problème de sécurité trouvé

Facteurs de risque

📁 Accès au système de fichiers (17)
SKILL.md:45 SKILL.md:45 SKILL.md:51 SKILL.md:52 SKILL.md:53 SKILL.md:53 SKILL.md:54 SKILL.md:54 SKILL.md:54 SKILL.md:61 SKILL.md:62 SKILL.md:62 SKILL.md:62 SKILL.md:94 SKILL.md:94 SKILL.md:94 SKILL.md:140
⚙️ Commandes externes (20)
SKILL.md:18 SKILL.md:20-34 SKILL.md:34-40 SKILL.md:40-48 SKILL.md:48-51 SKILL.md:51-52 SKILL.md:52-53 SKILL.md:53-54 SKILL.md:54-58 SKILL.md:58-87 SKILL.md:87-93 SKILL.md:93-100 SKILL.md:100-104 SKILL.md:104-106 SKILL.md:106-119 SKILL.md:119-123 SKILL.md:123-125 SKILL.md:125-134 SKILL.md:134-138 SKILL.md:138-146

Version de l’audit 3

Sûr

Jan 10, 2026, 10:24 AM

Pure documentation skill containing only guidance for creating TypeScript functions. No executable code, scripts, network calls, or filesystem access beyond reading the skill file.

1
Fichiers analysés
146
Lignes analysées
0
résultats
claude
Audité par
Aucun problème de sécurité trouvé

Version de l’audit 2

Sûr

Jan 10, 2026, 10:24 AM

Pure documentation skill containing only guidance for creating TypeScript functions. No executable code, scripts, network calls, or filesystem access beyond reading the skill file.

1
Fichiers analysés
146
Lignes analysées
0
résultats
claude
Audité par
Aucun problème de sécurité trouvé

Version de l’audit 1

Sûr

Jan 10, 2026, 10:24 AM

Pure documentation skill containing only guidance for creating TypeScript functions. No executable code, scripts, network calls, or filesystem access beyond reading the skill file.

1
Fichiers analysés
146
Lignes analysées
0
résultats
claude
Audité par
Aucun problème de sécurité trouvé
← Retour au skill