審計歷史
agentic-trust - 2 審計
審計版本 2
最新 安全Mar 4, 2026, 05:59 PM
All static analysis findings are false positives. The skill is a legitimate API client for the Agentic Trust service catalog. Detected 'external_commands' are markdown code examples showing CLI usage. 'Network' activity consists of standard HTTPS API calls to agentictrust.top. 'env_access' refers to API_KEY environment variable for authentication. No security issues detected.
低風險問題 (1)
風險因素
審計版本 1
安全Mar 1, 2026, 09:02 PM
Static analysis detected 143 potential issues, all are false positives after contextual evaluation. Markdown code blocks in documentation were misidentified as shell commands. SHA256 checksums are used for questionnaire verification, not encryption. HTTP requests are legitimate API calls to the official Agentic Trust service. Environment variable access follows security best practices. No malicious intent or security risks confirmed.