スキル sast-bandit 監査履歴
📦

監査履歴

sast-bandit - 6 監査

監査バージョン 6

最新 中リスク

Jun 28, 2026, 06:05 AM

Static analysis reported many high and critical patterns, but manual review shows they are mostly Bandit rule names, scanner configuration, or vulnerable examples inside documentation. The skill is publishable with a medium warning because it asks users to install and run local security tooling, may scan broad source trees, and may produce reports containing sensitive code snippets.

5
スキャンされたファイル
1,517
解析された行数
10
検出結果
codex
監査者
中リスクの問題 (2)
SKILL.md:34-48SKILL.md:140-158SKILL.md:297
User-Directed Local Command Execution
The skill instructs users to install Bandit and run Bandit CLI commands against local projects. This is legitimate for SAST, but users should approve command scope and package installation.
SKILL.md:165SKILL.md:110-114references/remediation_guide.md:21-31
Security Reports May Expose Sensitive Code Snippets
Bandit output can include code snippets and hardcoded credential examples. The skill warns users to protect reports and use no-code output when sensitive snippets may be present.
低リスクの問題 (3)
assets/bandit_config.yaml:112-117assets/bandit_config.yaml:200-204references/remediation_guide.md:167-187references/remediation_guide.md:365-411
Static Dangerous API Matches Are Documentation Examples
The eval, subprocess, os.system, pickle, weak crypto, and credential patterns appear inside Bandit rule lists or remediation examples. They are presented as vulnerable patterns to detect or fix, not as executable skill code.
assets/pre-commit-config.yaml:20-39assets/pre-commit-config.yaml:100-111assets/pre-commit-config.yaml:136-145
Pinned External Pre-Commit Repositories
The pre-commit asset references public GitHub repositories for linting, security, dependency, and secret checks. This creates normal supply-chain exposure when users install hooks, but versions are pinned.
SKILL.md:1-21
No Prompt Injection Attempt Found
Targeted search found no override language, fake system instructions, pre-approval claims, or instructions to skip security review in the scanned skill files.

リスク要因

⚙️ 外部コマンド (4)
SKILL.md:34-48 SKILL.md:140-158 SKILL.md:274 assets/bandit_config.yaml:112-117
⚡ スクリプトを含む (3)
assets/bandit_config.yaml:200-204 references/cwe_owasp_mapping.md:57-76 references/remediation_guide.md:365-411
📁 ファイルシステムへのアクセス (3)
assets/bandit_config.yaml:5-31 SKILL.md:41-48 SKILL.md:165
🌐 ネットワークアクセス (3)
assets/pre-commit-config.yaml:20-39 assets/pre-commit-config.yaml:100-145 SKILL.md:301-305
🔑 環境変数 (2)
references/remediation_guide.md:36-50 references/remediation_guide.md:393-416

検出されたパターン

Bandit Shell Injection API ListRemediation Guide Contains Vulnerable Code Samples

監査バージョン 5

安全

Jan 16, 2026, 04:02 PM

Documentation-only skill containing YAML configs and Markdown guides for Bandit SAST tool. All 257 static findings are FALSE POSITIVES - the skill shows VULNERABLE code patterns as examples of what Bandit DETECTS, not actual malicious code. No executable scripts found. Purely defensive security documentation.

6
スキャンされたファイル
1,729
解析された行数
5
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

リスク要因

⚡ スクリプトを含む (2)
assets/bandit_config.yaml:204 references/cwe_owasp_mapping.md:61
⚙️ 外部コマンド (120)
assets/bandit_config.yaml:117 assets/bandit_config.yaml:112 assets/bandit_config.yaml:116 assets/bandit_config.yaml:112 assets/bandit_config.yaml:115 references/cwe_owasp_mapping.md:76 references/cwe_owasp_mapping.md:76 references/cwe_owasp_mapping.md:92 references/cwe_owasp_mapping.md:112 references/cwe_owasp_mapping.md:112 references/remediation_guide.md:187 references/remediation_guide.md:204 references/remediation_guide.md:209 references/remediation_guide.md:228 references/remediation_guide.md:169 references/remediation_guide.md:176 references/remediation_guide.md:172 references/remediation_guide.md:22-32 references/remediation_guide.md:32-35 references/remediation_guide.md:35-67 references/remediation_guide.md:67-70 references/remediation_guide.md:70 references/remediation_guide.md:70-82 references/remediation_guide.md:82-95 references/remediation_guide.md:95-98 references/remediation_guide.md:98-113 references/remediation_guide.md:113-116 references/remediation_guide.md:116-131 references/remediation_guide.md:131-134 references/remediation_guide.md:134-147 references/remediation_guide.md:147-163 references/remediation_guide.md:163-177 references/remediation_guide.md:177-180 references/remediation_guide.md:180-229 references/remediation_guide.md:229-232 references/remediation_guide.md:232-235 references/remediation_guide.md:235-246 references/remediation_guide.md:246-255 references/remediation_guide.md:255-258 references/remediation_guide.md:258-308 references/remediation_guide.md:308-313 references/remediation_guide.md:313-322 references/remediation_guide.md:322-325 references/remediation_guide.md:325-349 references/remediation_guide.md:349-365 references/remediation_guide.md:365-374 references/remediation_guide.md:374-377 references/remediation_guide.md:377-423 references/remediation_guide.md:423-429 references/remediation_guide.md:429-439 references/remediation_guide.md:439-450 references/remediation_guide.md:450-453 references/remediation_guide.md:453-477 references/remediation_guide.md:477-480 references/remediation_guide.md:480-493 references/remediation_guide.md:493-500 references/remediation_guide.md:500-503 references/remediation_guide.md:503-527 references/remediation_guide.md:527-532 references/remediation_guide.md:532-537 references/remediation_guide.md:537-540 references/remediation_guide.md:540-559 references/remediation_guide.md:559-564 references/remediation_guide.md:564-571 references/remediation_guide.md:571-574 references/remediation_guide.md:574-596 SKILL.md:34-49 SKILL.md:49-57 SKILL.md:57-59 SKILL.md:59-61 SKILL.md:61 SKILL.md:61-63 SKILL.md:63-79 SKILL.md:79-85 SKILL.md:85-97 SKILL.md:97-110 SKILL.md:110-115 SKILL.md:115-128 SKILL.md:128-132 SKILL.md:132 SKILL.md:132-140 SKILL.md:140-159 SKILL.md:159-161 SKILL.md:161-165 SKILL.md:165-173 SKILL.md:173-177 SKILL.md:177-179 SKILL.md:179-181 SKILL.md:181-183 SKILL.md:183-185 SKILL.md:185-187 SKILL.md:187-189 SKILL.md:189-191 SKILL.md:191-199 SKILL.md:199-206 SKILL.md:206-212 SKILL.md:212-219 SKILL.md:219-225 SKILL.md:225-234 SKILL.md:234-240 SKILL.md:240-247 SKILL.md:247-251 SKILL.md:251-257 SKILL.md:257-264 SKILL.md:264-265 SKILL.md:265-266 SKILL.md:266-267 SKILL.md:267-272 SKILL.md:272 SKILL.md:272 SKILL.md:272 SKILL.md:272-274 SKILL.md:274-279 SKILL.md:279-280 SKILL.md:280-282 SKILL.md:282-287 SKILL.md:287-289 SKILL.md:289-295 SKILL.md:295-297 SKILL.md:274
📁 ファイルシステムへのアクセス (15)
assets/bandit_config.yaml:8 assets/bandit_config.yaml:10 assets/bandit_config.yaml:12 assets/bandit_config.yaml:19 assets/bandit_config.yaml:20 assets/bandit_config.yaml:23 assets/bandit_config.yaml:27 assets/bandit_config.yaml:28 assets/bandit_config.yaml:29 assets/bandit_config.yaml:30 assets/bandit_config.yaml:31 assets/bandit_config.yaml:75 references/cwe_owasp_mapping.md:23 SKILL.md:68 SKILL.md:272
🌐 ネットワークアクセス (35)
assets/pre-commit-config.yaml:20 assets/pre-commit-config.yaml:26 assets/pre-commit-config.yaml:32 assets/pre-commit-config.yaml:39 assets/pre-commit-config.yaml:68 assets/pre-commit-config.yaml:100 assets/pre-commit-config.yaml:137 assets/pre-commit-config.yaml:144 references/cwe_owasp_mapping.md:155 references/cwe_owasp_mapping.md:156 references/cwe_owasp_mapping.md:157 references/remediation_guide.md:321 references/remediation_guide.md:338 references/remediation_guide.md:341 references/remediation_guide.md:344 references/remediation_guide.md:348 references/remediation_guide.md:321 references/remediation_guide.md:338 references/remediation_guide.md:341 references/remediation_guide.md:347 references/remediation_guide.md:620 references/remediation_guide.md:621 references/remediation_guide.md:622 references/remediation_guide.md:499 references/remediation_guide.md:523 references/remediation_guide.md:526 SKILL.md:19 SKILL.md:20 SKILL.md:21 SKILL.md:290 SKILL.md:301 SKILL.md:302 SKILL.md:303 SKILL.md:304 SKILL.md:305
🔑 環境変数 (22)
references/remediation_guide.md:43 references/remediation_guide.md:49 references/remediation_guide.md:50 references/remediation_guide.md:393 references/remediation_guide.md:510 references/remediation_guide.md:511 references/remediation_guide.md:518 references/remediation_guide.md:37 references/remediation_guide.md:37 references/remediation_guide.md:40 references/remediation_guide.md:37 references/remediation_guide.md:40 references/remediation_guide.md:50 references/remediation_guide.md:301 references/remediation_guide.md:304 references/remediation_guide.md:393 references/remediation_guide.md:393 references/remediation_guide.md:398 references/remediation_guide.md:406 references/remediation_guide.md:416 references/remediation_guide.md:518 references/remediation_guide.md:518

監査バージョン 4

安全

Jan 16, 2026, 04:02 PM

Documentation-only skill containing YAML configs and Markdown guides for Bandit SAST tool. All 257 static findings are FALSE POSITIVES - the skill shows VULNERABLE code patterns as examples of what Bandit DETECTS, not actual malicious code. No executable scripts found. Purely defensive security documentation.

6
スキャンされたファイル
1,729
解析された行数
5
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

リスク要因

⚡ スクリプトを含む (2)
assets/bandit_config.yaml:204 references/cwe_owasp_mapping.md:61
⚙️ 外部コマンド (120)
assets/bandit_config.yaml:117 assets/bandit_config.yaml:112 assets/bandit_config.yaml:116 assets/bandit_config.yaml:112 assets/bandit_config.yaml:115 references/cwe_owasp_mapping.md:76 references/cwe_owasp_mapping.md:76 references/cwe_owasp_mapping.md:92 references/cwe_owasp_mapping.md:112 references/cwe_owasp_mapping.md:112 references/remediation_guide.md:187 references/remediation_guide.md:204 references/remediation_guide.md:209 references/remediation_guide.md:228 references/remediation_guide.md:169 references/remediation_guide.md:176 references/remediation_guide.md:172 references/remediation_guide.md:22-32 references/remediation_guide.md:32-35 references/remediation_guide.md:35-67 references/remediation_guide.md:67-70 references/remediation_guide.md:70 references/remediation_guide.md:70-82 references/remediation_guide.md:82-95 references/remediation_guide.md:95-98 references/remediation_guide.md:98-113 references/remediation_guide.md:113-116 references/remediation_guide.md:116-131 references/remediation_guide.md:131-134 references/remediation_guide.md:134-147 references/remediation_guide.md:147-163 references/remediation_guide.md:163-177 references/remediation_guide.md:177-180 references/remediation_guide.md:180-229 references/remediation_guide.md:229-232 references/remediation_guide.md:232-235 references/remediation_guide.md:235-246 references/remediation_guide.md:246-255 references/remediation_guide.md:255-258 references/remediation_guide.md:258-308 references/remediation_guide.md:308-313 references/remediation_guide.md:313-322 references/remediation_guide.md:322-325 references/remediation_guide.md:325-349 references/remediation_guide.md:349-365 references/remediation_guide.md:365-374 references/remediation_guide.md:374-377 references/remediation_guide.md:377-423 references/remediation_guide.md:423-429 references/remediation_guide.md:429-439 references/remediation_guide.md:439-450 references/remediation_guide.md:450-453 references/remediation_guide.md:453-477 references/remediation_guide.md:477-480 references/remediation_guide.md:480-493 references/remediation_guide.md:493-500 references/remediation_guide.md:500-503 references/remediation_guide.md:503-527 references/remediation_guide.md:527-532 references/remediation_guide.md:532-537 references/remediation_guide.md:537-540 references/remediation_guide.md:540-559 references/remediation_guide.md:559-564 references/remediation_guide.md:564-571 references/remediation_guide.md:571-574 references/remediation_guide.md:574-596 SKILL.md:34-49 SKILL.md:49-57 SKILL.md:57-59 SKILL.md:59-61 SKILL.md:61 SKILL.md:61-63 SKILL.md:63-79 SKILL.md:79-85 SKILL.md:85-97 SKILL.md:97-110 SKILL.md:110-115 SKILL.md:115-128 SKILL.md:128-132 SKILL.md:132 SKILL.md:132-140 SKILL.md:140-159 SKILL.md:159-161 SKILL.md:161-165 SKILL.md:165-173 SKILL.md:173-177 SKILL.md:177-179 SKILL.md:179-181 SKILL.md:181-183 SKILL.md:183-185 SKILL.md:185-187 SKILL.md:187-189 SKILL.md:189-191 SKILL.md:191-199 SKILL.md:199-206 SKILL.md:206-212 SKILL.md:212-219 SKILL.md:219-225 SKILL.md:225-234 SKILL.md:234-240 SKILL.md:240-247 SKILL.md:247-251 SKILL.md:251-257 SKILL.md:257-264 SKILL.md:264-265 SKILL.md:265-266 SKILL.md:266-267 SKILL.md:267-272 SKILL.md:272 SKILL.md:272 SKILL.md:272 SKILL.md:272-274 SKILL.md:274-279 SKILL.md:279-280 SKILL.md:280-282 SKILL.md:282-287 SKILL.md:287-289 SKILL.md:289-295 SKILL.md:295-297 SKILL.md:274
📁 ファイルシステムへのアクセス (15)
assets/bandit_config.yaml:8 assets/bandit_config.yaml:10 assets/bandit_config.yaml:12 assets/bandit_config.yaml:19 assets/bandit_config.yaml:20 assets/bandit_config.yaml:23 assets/bandit_config.yaml:27 assets/bandit_config.yaml:28 assets/bandit_config.yaml:29 assets/bandit_config.yaml:30 assets/bandit_config.yaml:31 assets/bandit_config.yaml:75 references/cwe_owasp_mapping.md:23 SKILL.md:68 SKILL.md:272
🌐 ネットワークアクセス (35)
assets/pre-commit-config.yaml:20 assets/pre-commit-config.yaml:26 assets/pre-commit-config.yaml:32 assets/pre-commit-config.yaml:39 assets/pre-commit-config.yaml:68 assets/pre-commit-config.yaml:100 assets/pre-commit-config.yaml:137 assets/pre-commit-config.yaml:144 references/cwe_owasp_mapping.md:155 references/cwe_owasp_mapping.md:156 references/cwe_owasp_mapping.md:157 references/remediation_guide.md:321 references/remediation_guide.md:338 references/remediation_guide.md:341 references/remediation_guide.md:344 references/remediation_guide.md:348 references/remediation_guide.md:321 references/remediation_guide.md:338 references/remediation_guide.md:341 references/remediation_guide.md:347 references/remediation_guide.md:620 references/remediation_guide.md:621 references/remediation_guide.md:622 references/remediation_guide.md:499 references/remediation_guide.md:523 references/remediation_guide.md:526 SKILL.md:19 SKILL.md:20 SKILL.md:21 SKILL.md:290 SKILL.md:301 SKILL.md:302 SKILL.md:303 SKILL.md:304 SKILL.md:305
🔑 環境変数 (22)
references/remediation_guide.md:43 references/remediation_guide.md:49 references/remediation_guide.md:50 references/remediation_guide.md:393 references/remediation_guide.md:510 references/remediation_guide.md:511 references/remediation_guide.md:518 references/remediation_guide.md:37 references/remediation_guide.md:37 references/remediation_guide.md:40 references/remediation_guide.md:37 references/remediation_guide.md:40 references/remediation_guide.md:50 references/remediation_guide.md:301 references/remediation_guide.md:304 references/remediation_guide.md:393 references/remediation_guide.md:393 references/remediation_guide.md:398 references/remediation_guide.md:406 references/remediation_guide.md:416 references/remediation_guide.md:518 references/remediation_guide.md:518

監査バージョン 3

低リスク

Jan 10, 2026, 10:56 AM

Documentation and configuration-only skill for Bandit SAST tool. No executable scripts found. Contains YAML configs, remediation guides, and security framework mappings. Purely informational with no code execution capabilities.

6
スキャンされたファイル
1,527
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

監査バージョン 2

低リスク

Jan 10, 2026, 10:56 AM

Documentation and configuration-only skill for Bandit SAST tool. No executable scripts found. Contains YAML configs, remediation guides, and security framework mappings. Purely informational with no code execution capabilities.

6
スキャンされたファイル
1,527
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

監査バージョン 1

低リスク

Jan 10, 2026, 10:56 AM

Documentation and configuration-only skill for Bandit SAST tool. No executable scripts found. Contains YAML configs, remediation guides, and security framework mappings. Purely informational with no code execution capabilities.

6
スキャンされたファイル
1,527
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした
← スキルに戻る