Compétences drugbank-database Historique des audits
💊

Historique des audits

drugbank-database - 4 audits

Version de l’audit 4

Dernier Sûr

Jan 17, 2026, 06:51 AM

This is a legitimate scientific skill for accessing the DrugBank bioinformatics database. All 353 static findings are FALSE POSITIVES caused by the analyzer misinterpreting Markdown code block syntax and bioinformatics terminology. The skill uses the official drugbank-downloader package for authenticated access to a recognized public database. No actual security risks were identified after manual evaluation.

8
Fichiers analysés
2,964
Lignes analysées
4
résultats
claude
Audité par
Aucun problème de sécurité trouvé

Facteurs de risque

⚙️ Commandes externes (3)
SKILL.md:21-24 references/data-access.md:14-17 references/chemical-analysis.md:17-47
🌐 Accès réseau (2)
references/data-access.md:148 references/chemical-analysis.md:23
📁 Accès au système de fichiers (2)
references/data-access.md:20 scripts/drugbank_helper.py:188-189
🔑 Variables d’environnement (1)
references/data-access.md:14-16

Version de l’audit 3

Sûr

Jan 17, 2026, 06:51 AM

This is a legitimate scientific skill for accessing the DrugBank bioinformatics database. All 353 static findings are FALSE POSITIVES caused by the analyzer misinterpreting Markdown code block syntax and bioinformatics terminology. The skill uses the official drugbank-downloader package for authenticated access to a recognized public database. No actual security risks were identified after manual evaluation.

8
Fichiers analysés
2,964
Lignes analysées
4
résultats
claude
Audité par
Aucun problème de sécurité trouvé

Facteurs de risque

⚙️ Commandes externes (3)
SKILL.md:21-24 references/data-access.md:14-17 references/chemical-analysis.md:17-47
🌐 Accès réseau (2)
references/data-access.md:148 references/chemical-analysis.md:23
📁 Accès au système de fichiers (2)
references/data-access.md:20 scripts/drugbank_helper.py:188-189
🔑 Variables d’environnement (1)
references/data-access.md:14-16

Version de l’audit 2

Sûr

Jan 12, 2026, 04:28 PM

This is a legitimate scientific skill for accessing the DrugBank bioinformatics database. All 342 static findings are FALSE POSITIVES caused by the analyzer misinterpreting Markdown code block syntax and bioinformatics terminology. The skill uses the official drugbank-downloader package for authenticated access to a recognized public database.

7
Fichiers analysés
2,707
Lignes analysées
3
résultats
claude
Audité par
Aucun problème de sécurité trouvé

Facteurs de risque

⚙️ Commandes externes (1)
references/chemical-analysis.md:17-47
🌐 Accès réseau (1)
references/chemical-analysis.md:23
📁 Accès au système de fichiers (1)
references/data-access.md:20

Version de l’audit 1

Risque faible

Jan 4, 2026, 05:15 PM

The skill is documentation and a local XML helper script. It includes example API calls and local caching paths, which introduce limited network and filesystem exposure when used. The helper script only parses XML data with no network calls, command execution, or credential theft.

10
Fichiers analysés
2,960
Lignes analysées
5
résultats
claude
Audité par
Problèmes à risque faible (2)
references/data-access.md:144-152
API requests transmit data to DrugBank
Documentation includes REST API examples: `url = f"https://go.drugbank.com/drugs/{drug_id}.json"` and `response = requests.get(url, headers=headers)`. This sends API credentials over the network when using the DrugBank API.
references/data-access.md:124-129references/data-access.md:177-189
Cache writes to user home directory
Examples write cached data in user home: `drugbank_dir = Path.home() / '.data' / 'drugbank'` and `with open(cache_file, 'wb') as f:`. This writes outside the skill directory for data caching.

Facteurs de risque

⚡ Contient des scripts (1)
scripts/drugbank_helper.py:1-351
🌐 Accès réseau (1)
references/data-access.md:142-159
📁 Accès au système de fichiers (2)
references/data-access.md:119-130 references/data-access.md:169-190
← Retour au skill