Habilidades next-js-patterns Histórico de auditoria
📦

Histórico de auditoria

next-js-patterns - 6 auditorias

Versão da auditoria 6

Mais recente Seguro

Jun 28, 2026, 04:46 AM

Static analysis flagged Markdown backticks, a documented fetch example, and a weak-crypto pattern on the description line. Review found these are documentation false positives, with no executable commands, external endpoint, cryptographic implementation, or prompt injection.

1
Arquivos analisados
46
Linhas analisadas
0
Review items
3
False positives ignored
Static false positives ignored (3)

These static matches were dismissed by semantic review or matched schema-only tokens, so they are shown for transparency but do not drive the quality score.

Baixo
False Positive: Markdown Code Spans Flagged as Commands
The external command detections are Markdown inline code references and a fenced TSX example. They document Next.js file paths, imports, hooks, fonts, and metadata, but do not execute shell commands.
Every cited location is plain Markdown documentation or a fenced TSX example. No shell execution syntax, script file, or instruction to run external commands appears in the skill.
Baixo
False Positive: Documented Fetch Usage
The network detection is guidance that Server Components can use fetch or database calls. It does not name an external endpoint, send secrets, or perform a network request from the skill itself.
The only fetch reference is instructional text for Next.js data fetching. There is no URL, payload, credential access, or executable code path.
Baixo
False Positive: Weak Cryptography Pattern
The high-severity weak cryptography detection points to the frontmatter description. The line describes Next.js App Router, Server Actions, and routing, with no cryptographic algorithm or implementation.
The cited line is natural-language metadata about framework patterns. It contains no hash, cipher, random number generation, or security-sensitive code.
Nenhum problema de segurança encontrado
Auditado por: codex

Versão da auditoria 5

Seguro

Jan 16, 2026, 04:49 PM

Pure documentation skill containing markdown documentation for Next.js patterns. No executable code, network calls, or file system access. The static analyzer flagged JSON string patterns as cryptographic/network threats, but these are metadata fields in a configuration file. This skill only provides guidance documentation.

2
Arquivos analisados
222
Linhas analisadas
2
Review items
0
False positives ignored
Auditado por: claude

Versão da auditoria 4

Seguro

Jan 16, 2026, 04:49 PM

Pure documentation skill containing markdown documentation for Next.js patterns. No executable code, network calls, or file system access. The static analyzer flagged JSON string patterns as cryptographic/network threats, but these are metadata fields in a configuration file. This skill only provides guidance documentation.

2
Arquivos analisados
222
Linhas analisadas
2
Review items
0
False positives ignored
Auditado por: claude

Versão da auditoria 3

Seguro

Jan 10, 2026, 09:57 AM

Pure documentation file with no executable code, network calls, or file system access. Contains only markdown documentation for Next.js patterns.

1
Arquivos analisados
46
Linhas analisadas
0
Review items
0
False positives ignored
Nenhum problema de segurança encontrado
Auditado por: claude

Versão da auditoria 2

Seguro

Jan 10, 2026, 09:57 AM

Pure documentation file with no executable code, network calls, or file system access. Contains only markdown documentation for Next.js patterns.

1
Arquivos analisados
46
Linhas analisadas
0
Review items
0
False positives ignored
Nenhum problema de segurança encontrado
Auditado por: claude

Versão da auditoria 1

Seguro

Jan 10, 2026, 09:57 AM

Pure documentation file with no executable code, network calls, or file system access. Contains only markdown documentation for Next.js patterns.

1
Arquivos analisados
46
Linhas analisadas
0
Review items
0
False positives ignored
Nenhum problema de segurança encontrado
Auditado por: claude