スキル api-mitmproxy 監査履歴
📦

監査履歴

api-mitmproxy - 6 監査

監査バージョン 6

最新 高リスク

Jun 28, 2026, 06:12 AM

The static findings are mostly documentation and template examples, not hidden executable payloads. However, the skill provides high-impact dual-use guidance for HTTPS interception, credential capture, certificate pinning bypass, exposed proxy listeners, request modification, and copied CI command execution patterns. No prompt injection attempt or confirmed malicious marketplace behavior was found, but publication should require stricter safeguards and warnings.

5
スキャンされたファイル
2,004
解析された行数
12
検出結果
codex
監査者

高リスクの問題 (2)

SKILL.md:152-166SKILL.md:221-245SKILL.md:324-330SKILL.md:446-454
Dual-use HTTPS interception and credential capture guidance
The skill teaches users to proxy client traffic, install mitmproxy certificates, bypass certificate pinning, capture authorization headers, and modify requests. This is legitimate for authorized testing, but it can also enable unauthorized interception and token misuse if copied outside a controlled scope.
assets/ci-config-template.yml:237-244
Remote installer piped directly to shell in CI template
The CI template includes a curl command that downloads a remote install script and pipes it to bash. This is a real supply-chain risk if users copy the template, because execution depends on remote script integrity at runtime.
中リスクの問題 (3)
SKILL.md:62-69SKILL.md:161-164SKILL.md:438-443
Proxy examples bind to all network interfaces
Several mitmproxy examples bind the listener to 0.0.0.0. This can expose an interception proxy beyond localhost if firewall and access controls are not configured correctly.
SKILL.md:426-435
Destructive troubleshooting command removes mitmproxy state
The troubleshooting section recommends deleting the mitmproxy configuration directory to regenerate certificates. The path is scoped, but users may lose local keys, certificates, and proxy configuration.
assets/rule-template.yaml:93-165references/EXAMPLE.md:412-447
Environment and secret access appears in security examples
The static scanner flagged environment variable and secret terms in rule and reference templates. These examples teach secure secret handling or detection rather than exfiltrating environment values.
低リスクの問題 (2)
assets/rule-template.yaml:14-299references/EXAMPLE.md:89-162references/EXAMPLE.md:235-279references/WORKFLOW_CHECKLIST.md:173-209
Vulnerable code samples are documentation examples
XSS, SQL injection, weak cryptography, C2 keywords, and reconnaissance terms appear inside security education templates and framework mappings. They are not executed by the skill and are used to explain detection or remediation.
SKILL.md:1-22
No prompt injection attempt found
Searches for override phrases, fake system instructions, pre-approval claims, and requests to skip analysis found no evidence in the reviewed skill files.

リスク要因

⚙️ 外部コマンド (87)
assets/ci-config-template.yml:298 assets/ci-config-template.yml:301 assets/ci-config-template.yml:304 assets/ci-config-template.yml:307 assets/ci-config-template.yml:310 assets/ci-config-template.yml:134 assets/ci-config-template.yml:250 assets/ci-config-template.yml:291 references/EXAMPLE.md:54-74 references/EXAMPLE.md:74-95 references/EXAMPLE.md:95-108 references/EXAMPLE.md:108-111 references/EXAMPLE.md:111-118 references/EXAMPLE.md:118-122 references/EXAMPLE.md:122-129 references/EXAMPLE.md:129-135 references/EXAMPLE.md:135-151 references/EXAMPLE.md:151-154 references/EXAMPLE.md:154-162 references/EXAMPLE.md:162-296 references/EXAMPLE.md:296-306 references/EXAMPLE.md:306-309 references/EXAMPLE.md:309-318 references/EXAMPLE.md:318-333 references/EXAMPLE.md:333-342 references/EXAMPLE.md:342-346 references/EXAMPLE.md:346-354 references/EXAMPLE.md:354-358 references/EXAMPLE.md:358-361 references/EXAMPLE.md:361-371 references/EXAMPLE.md:371-404 references/EXAMPLE.md:404-414 references/EXAMPLE.md:414-447 references/EXAMPLE.md:447-451 references/EXAMPLE.md:451-472 references/EXAMPLE.md:472-476 references/EXAMPLE.md:476-537 references/WORKFLOW_CHECKLIST.md:74 SKILL.md:40-52 SKILL.md:52-63 SKILL.md:63-69 SKILL.md:69-100 SKILL.md:100-102 SKILL.md:102-106 SKILL.md:106-112 SKILL.md:112-114 SKILL.md:114-118 SKILL.md:118-124 SKILL.md:124-125 SKILL.md:125-142 SKILL.md:142-144 SKILL.md:144-148 SKILL.md:148-162 SKILL.md:162-164 SKILL.md:164-173 SKILL.md:173-175 SKILL.md:175-179 SKILL.md:179-181 SKILL.md:181-185 SKILL.md:185-187 SKILL.md:187-191 SKILL.md:191-193 SKILL.md:193-207 SKILL.md:207-223 SKILL.md:223-245 SKILL.md:245-251 SKILL.md:251-268 SKILL.md:268-274 SKILL.md:274-295 SKILL.md:295-301 SKILL.md:301-317 SKILL.md:317-320 SKILL.md:320-322 SKILL.md:322-347 SKILL.md:347-360 SKILL.md:360-378 SKILL.md:378-390 SKILL.md:390-396 SKILL.md:396-402 SKILL.md:402-408 SKILL.md:408-422 SKILL.md:422-429 SKILL.md:429-436 SKILL.md:436-449 SKILL.md:449-454 SKILL.md:454-459 SKILL.md:459-462
🌐 ネットワークアクセス (39)
assets/ci-config-template.yml:240 assets/rule-template.yaml:43 assets/rule-template.yaml:44 assets/rule-template.yaml:45 assets/rule-template.yaml:73 assets/rule-template.yaml:118 assets/rule-template.yaml:119 assets/rule-template.yaml:151 assets/rule-template.yaml:191 assets/rule-template.yaml:192 assets/rule-template.yaml:193 assets/rule-template.yaml:217 assets/rule-template.yaml:260 assets/rule-template.yaml:261 assets/rule-template.yaml:288 SKILL.md:129 SKILL.md:231 SKILL.md:256 SKILL.md:280 SKILL.md:20 SKILL.md:21 SKILL.md:47 SKILL.md:163 SKILL.md:186 SKILL.md:192 SKILL.md:202 SKILL.md:353 SKILL.md:354 SKILL.md:481 SKILL.md:482 SKILL.md:483 SKILL.md:484 SKILL.md:47 SKILL.md:65 SKILL.md:68 SKILL.md:163 SKILL.md:443 SKILL.md:353 SKILL.md:354
📁 ファイルシステムへのアクセス (11)
assets/ci-config-template.yml:323 assets/ci-config-template.yml:323 SKILL.md:260 SKILL.md:260 SKILL.md:260 SKILL.md:207 SKILL.md:431 SKILL.md:434 SKILL.md:207 SKILL.md:431 SKILL.md:434
🔑 環境変数 (27)
assets/ci-config-template.yml:164 assets/ci-config-template.yml:164 assets/rule-template.yaml:148 assets/rule-template.yaml:148 assets/rule-template.yaml:147 assets/rule-template.yaml:162 assets/rule-template.yaml:132 assets/rule-template.yaml:147 assets/rule-template.yaml:148 assets/rule-template.yaml:156 assets/rule-template.yaml:157 assets/rule-template.yaml:162 assets/rule-template.yaml:162 assets/rule-template.yaml:163 assets/rule-template.yaml:164 assets/rule-template.yaml:165 references/EXAMPLE.md:423 references/EXAMPLE.md:423 references/EXAMPLE.md:423 references/EXAMPLE.md:424 references/EXAMPLE.md:425 references/EXAMPLE.md:427 references/EXAMPLE.md:430 references/EXAMPLE.md:432 references/EXAMPLE.md:437 references/EXAMPLE.md:437 references/EXAMPLE.md:444
⚡ スクリプトを含む (2)
references/EXAMPLE.md:138 references/EXAMPLE.md:137

検出されたパターン

Certificate pinning bypass workflowAuthorization header capture and request mutationRemote script execution through curl pipe bashAll-interface proxy binding

監査バージョン 5

低リスク

Jan 16, 2026, 03:11 PM

Documentation-only skill describing mitmproxy, a legitimate open-source security testing tool. Contains no executable code - only documentation for authorized security testing workflows. All 234 static findings are false positives: patterns flagged as dangerous (command execution, credential access, network operations) are legitimate documentation of security tool capabilities. The skill explicitly includes security considerations warning about authorization, sensitive data handling, and compliance requirements. No evidence of malicious intent or harmful patterns found after semantic evaluation.

6
スキャンされたファイル
2,237
解析された行数
5
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

リスク要因

⚙️ 外部コマンド (1)
SKILL.md:40-450
🌐 ネットワークアクセス (1)
SKILL.md:20-484
📁 ファイルシステムへのアクセス (1)
SKILL.md:207-434
🔑 環境変数 (1)
SKILL.md:423
⚡ スクリプトを含む (1)
references/EXAMPLE.md:130-145

監査バージョン 4

低リスク

Jan 16, 2026, 03:11 PM

Documentation-only skill describing mitmproxy, a legitimate open-source security testing tool. Contains no executable code - only documentation for authorized security testing workflows. All 234 static findings are false positives: patterns flagged as dangerous (command execution, credential access, network operations) are legitimate documentation of security tool capabilities. The skill explicitly includes security considerations warning about authorization, sensitive data handling, and compliance requirements. No evidence of malicious intent or harmful patterns found after semantic evaluation.

6
スキャンされたファイル
2,237
解析された行数
5
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

リスク要因

⚙️ 外部コマンド (1)
SKILL.md:40-450
🌐 ネットワークアクセス (1)
SKILL.md:20-484
📁 ファイルシステムへのアクセス (1)
SKILL.md:207-434
🔑 環境変数 (1)
SKILL.md:423
⚡ スクリプトを含む (1)
references/EXAMPLE.md:130-145

監査バージョン 3

低リスク

Jan 10, 2026, 10:15 AM

Documentation-only skill describing mitmproxy, a legitimate open-source security tool. Contains no executable scripts. Includes security considerations for proper authorization and sensitive data handling. Content is defensive and educational.

5
スキャンされたファイル
2,004
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

監査バージョン 2

低リスク

Jan 10, 2026, 10:15 AM

Documentation-only skill describing mitmproxy, a legitimate open-source security tool. Contains no executable scripts. Includes security considerations for proper authorization and sensitive data handling. Content is defensive and educational.

5
スキャンされたファイル
2,004
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

監査バージョン 1

低リスク

Jan 10, 2026, 10:15 AM

Documentation-only skill describing mitmproxy, a legitimate open-source security tool. Contains no executable scripts. Includes security considerations for proper authorization and sensitive data handling. Content is defensive and educational.

5
スキャンされたファイル
2,004
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした
← スキルに戻る