スキル architecture-decision-record 監査履歴
📦

監査履歴

architecture-decision-record - 6 監査

監査バージョン 6

最新 安全

Jun 28, 2026, 10:37 AM

The static analyzer reported command execution, network, credential, and weak-crypto indicators, but review found documentation-only Markdown. The flagged locations are template paths, code spans, example URLs, and architecture terms, with no scripts, network calls, credential access, or prompt injection found.

7
スキャンされたファイル
1,798
解析された行数
3
検出結果
codex
監査者
低リスクの問題 (3)
SKILL.md:36-37SKILL.md:56-74SKILL.md:88-115checklists/adr-review-checklist.md:10-11examples/adr-0002-choose-postgresql.md:59-71examples/adr-0003-api-versioning-strategy.md:46-108
Static command execution findings are Markdown examples
The external command detections are false positives. The flagged lines use Markdown code spans, fenced blocks, file paths, template examples, and technology names, not executable Ruby or shell code.
examples/adr-0001-adopt-microservices.md:286-308examples/adr-0002-choose-postgresql.md:231-233examples/adr-0003-api-versioning-strategy.md:281-284templates/adr-frontmatter.yaml:65-76
Static network findings are reference links only
The hardcoded URL detections are false positives. The URLs appear in ADR reference sections and YAML example metadata, with no code that fetches, posts, or exfiltrates data.
examples/adr-0001-adopt-microservices.md:229examples/adr-0002-choose-postgresql.md:232checklists/adr-review-checklist.md:142templates/adr-template.md:9-20templates/adr-frontmatter.yaml:8-18SKILL.md:3-17
Static sensitive-file and weak-crypto hits are terminology collisions
The sensitive and weak-crypto detections are false positives caused by ordinary architecture text such as SAM/LocalStack, calculator.aws, ADR status fields, and database or API terms. No credential file access, cryptographic implementation, or malicious C2 behavior was found.

監査バージョン 5

安全

Jan 16, 2026, 04:20 PM

Pure documentation skill containing only markdown templates and guidance. No executable code, scripts, network operations, or file system access. All static scanner findings are false positives caused by the scanner misinterpreting markdown syntax and documentation text as code/security issues. Prior audit correctly identified this as safe with zero risk factors.

8
スキャンされたファイル
2,022
解析された行数
2
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

リスク要因

⚙️ 外部コマンド (39)
checklists/adr-review-checklist.md:10 checklists/adr-review-checklist.md:10 checklists/adr-review-checklist.md:11 examples/adr-0002-choose-postgresql.md:59 examples/adr-0002-choose-postgresql.md:60 examples/adr-0002-choose-postgresql.md:61 examples/adr-0002-choose-postgresql.md:62 examples/adr-0002-choose-postgresql.md:71 examples/adr-0003-api-versioning-strategy.md:46 examples/adr-0003-api-versioning-strategy.md:51-55 examples/adr-0003-api-versioning-strategy.md:55-82 examples/adr-0003-api-versioning-strategy.md:82-94 examples/adr-0003-api-versioning-strategy.md:94-98 examples/adr-0003-api-versioning-strategy.md:98-100 examples/adr-0003-api-versioning-strategy.md:100-107 examples/adr-0003-api-versioning-strategy.md:107-108 examples/adr-0003-api-versioning-strategy.md:108 examples/adr-0003-api-versioning-strategy.md:108-194 examples/adr-0003-api-versioning-strategy.md:194-195 examples/adr-0003-api-versioning-strategy.md:195-216 examples/adr-0003-api-versioning-strategy.md:216-237 SKILL.md:36 SKILL.md:37 SKILL.md:56-74 SKILL.md:74-88 SKILL.md:88-115 SKILL.md:115-124 SKILL.md:124-146 SKILL.md:146-157 SKILL.md:157-200 SKILL.md:200-211 SKILL.md:211-215 SKILL.md:215-255 SKILL.md:255 SKILL.md:255-261 SKILL.md:261-293 SKILL.md:293-294 SKILL.md:294-295 SKILL.md:295-296
🌐 ネットワークアクセス (17)
examples/adr-0001-adopt-microservices.md:286 examples/adr-0001-adopt-microservices.md:288 examples/adr-0001-adopt-microservices.md:291 examples/adr-0001-adopt-microservices.md:296 examples/adr-0001-adopt-microservices.md:307 examples/adr-0001-adopt-microservices.md:308 examples/adr-0002-choose-postgresql.md:231 examples/adr-0002-choose-postgresql.md:232 examples/adr-0002-choose-postgresql.md:233 examples/adr-0003-api-versioning-strategy.md:281 examples/adr-0003-api-versioning-strategy.md:282 examples/adr-0003-api-versioning-strategy.md:283 examples/adr-0003-api-versioning-strategy.md:284 templates/adr-frontmatter.yaml:65 templates/adr-frontmatter.yaml:70 templates/adr-frontmatter.yaml:72 templates/adr-frontmatter.yaml:76

監査バージョン 4

安全

Jan 16, 2026, 04:20 PM

Pure documentation skill containing only markdown templates and guidance. No executable code, scripts, network operations, or file system access. All static scanner findings are false positives caused by the scanner misinterpreting markdown syntax and documentation text as code/security issues. Prior audit correctly identified this as safe with zero risk factors.

8
スキャンされたファイル
2,022
解析された行数
2
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

リスク要因

⚙️ 外部コマンド (39)
checklists/adr-review-checklist.md:10 checklists/adr-review-checklist.md:10 checklists/adr-review-checklist.md:11 examples/adr-0002-choose-postgresql.md:59 examples/adr-0002-choose-postgresql.md:60 examples/adr-0002-choose-postgresql.md:61 examples/adr-0002-choose-postgresql.md:62 examples/adr-0002-choose-postgresql.md:71 examples/adr-0003-api-versioning-strategy.md:46 examples/adr-0003-api-versioning-strategy.md:51-55 examples/adr-0003-api-versioning-strategy.md:55-82 examples/adr-0003-api-versioning-strategy.md:82-94 examples/adr-0003-api-versioning-strategy.md:94-98 examples/adr-0003-api-versioning-strategy.md:98-100 examples/adr-0003-api-versioning-strategy.md:100-107 examples/adr-0003-api-versioning-strategy.md:107-108 examples/adr-0003-api-versioning-strategy.md:108 examples/adr-0003-api-versioning-strategy.md:108-194 examples/adr-0003-api-versioning-strategy.md:194-195 examples/adr-0003-api-versioning-strategy.md:195-216 examples/adr-0003-api-versioning-strategy.md:216-237 SKILL.md:36 SKILL.md:37 SKILL.md:56-74 SKILL.md:74-88 SKILL.md:88-115 SKILL.md:115-124 SKILL.md:124-146 SKILL.md:146-157 SKILL.md:157-200 SKILL.md:200-211 SKILL.md:211-215 SKILL.md:215-255 SKILL.md:255 SKILL.md:255-261 SKILL.md:261-293 SKILL.md:293-294 SKILL.md:294-295 SKILL.md:295-296
🌐 ネットワークアクセス (17)
examples/adr-0001-adopt-microservices.md:286 examples/adr-0001-adopt-microservices.md:288 examples/adr-0001-adopt-microservices.md:291 examples/adr-0001-adopt-microservices.md:296 examples/adr-0001-adopt-microservices.md:307 examples/adr-0001-adopt-microservices.md:308 examples/adr-0002-choose-postgresql.md:231 examples/adr-0002-choose-postgresql.md:232 examples/adr-0002-choose-postgresql.md:233 examples/adr-0003-api-versioning-strategy.md:281 examples/adr-0003-api-versioning-strategy.md:282 examples/adr-0003-api-versioning-strategy.md:283 examples/adr-0003-api-versioning-strategy.md:284 templates/adr-frontmatter.yaml:65 templates/adr-frontmatter.yaml:70 templates/adr-frontmatter.yaml:72 templates/adr-frontmatter.yaml:76

監査バージョン 3

安全

Jan 10, 2026, 10:28 AM

Pure documentation skill containing only markdown templates and guidance. No executable code, scripts, network operations, or file system access capabilities. The content provides ADR best practices, templates, and examples without any security concerns.

7
スキャンされたファイル
1,798
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

監査バージョン 2

安全

Jan 10, 2026, 10:28 AM

Pure documentation skill containing only markdown templates and guidance. No executable code, scripts, network operations, or file system access capabilities. The content provides ADR best practices, templates, and examples without any security concerns.

7
スキャンされたファイル
1,798
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした

監査バージョン 1

安全

Jan 10, 2026, 10:28 AM

Pure documentation skill containing only markdown templates and guidance. No executable code, scripts, network operations, or file system access capabilities. The content provides ADR best practices, templates, and examples without any security concerns.

7
スキャンされたファイル
1,798
解析された行数
0
検出結果
claude
監査者
セキュリティ問題は見つかりませんでした
← スキルに戻る