監査履歴
detection-sigma - 6 監査
監査バージョン 6
最新 中リスクJun 28, 2026, 05:30 AM
Static analysis reported many critical and high indicators, but most are false positives caused by Sigma detection examples, ATT&CK terminology, markdown command snippets, and reference URLs. One real documentation risk remains: a Splunk deployment example uses placeholder credentials and disables TLS verification. No confirmed malicious intent or prompt injection attempt was found, so publication is acceptable with a security warning.
中リスクの問題 (1)
低リスクの問題 (4)
リスク要因
🌐 ネットワークアクセス (38)
⚙️ 外部コマンド (474)
検出されたパターン
監査バージョン 5
安全Jan 16, 2026, 03:39 PM
Documentation-only skill containing YAML templates and reference guides for defensive security detection engineering. All static findings are FALSE POSITIVES - the flagged patterns are detection rules designed to identify malicious activity, not perform it. This skill does not contain executable code, network access, or file system operations. Previous Claude audit correctly identified this as safe.
リスク要因
🌐 ネットワークアクセス (38)
⚙️ 外部コマンド (474)
監査バージョン 4
安全Jan 16, 2026, 03:39 PM
Documentation-only skill containing YAML templates and reference guides for defensive security detection engineering. All static findings are FALSE POSITIVES - the flagged patterns are detection rules designed to identify malicious activity, not perform it. This skill does not contain executable code, network access, or file system operations. Previous Claude audit correctly identified this as safe.
リスク要因
🌐 ネットワークアクセス (38)
⚙️ 外部コマンド (474)
監査バージョン 3
安全Jan 10, 2026, 10:31 AM
Documentation-only skill containing YAML templates and reference guides for defensive security detection engineering. No executable code, network access, or file system operations. All content describes legitimate defensive security patterns for threat detection and compliance monitoring.
監査バージョン 2
安全Jan 10, 2026, 10:31 AM
Documentation-only skill containing YAML templates and reference guides for defensive security detection engineering. No executable code, network access, or file system operations. All content describes legitimate defensive security patterns for threat detection and compliance monitoring.
監査バージョン 1
安全Jan 10, 2026, 10:31 AM
Documentation-only skill containing YAML templates and reference guides for defensive security detection engineering. No executable code, network access, or file system operations. All content describes legitimate defensive security patterns for threat detection and compliance monitoring.