Histórico de Auditoria - ml-expert

Versão da auditoria 5

Mais recente Baixo Risco

Jan 17, 2026, 04:02 AM

This is a legitimate ML implementation skill. All 79 static findings are false positives. The scanner misidentified Python code examples (backticks in string literals) as shell commands, and benign ML terminology as cryptographic/network threats. The skill operates in plan mode with user approval for all changes. No malicious patterns, credential theft, or exfiltration behavior detected.

3

Arquivos analisados

1,126

Linhas analisadas

4

achados

claude

Auditado por

Problemas de Baixo Risco (1)

SKILL.md:114-116

Standard development tool capabilities

The skill can read, write, and edit files in the project directory. It can also execute bash commands for testing and validation. These are standard capabilities for a development tool but could theoretically be misused if the agent prompt were compromised. The skill uses plan mode for safety, requiring user approval before applying changes.

Fatores de risco

⚡ Contém scripts (1)

SKILL.md:159-163

⚙️ Comandos externos (1)

SKILL.md:112-160

📁 Acesso ao sistema de arquivos (1)

SKILL.md:112-116

Versão da auditoria 4

Baixo Risco

Jan 17, 2026, 04:02 AM

This is a legitimate ML implementation skill. All 79 static findings are false positives. The scanner misidentified Python code examples (backticks in string literals) as shell commands, and benign ML terminology as cryptographic/network threats. The skill operates in plan mode with user approval for all changes. No malicious patterns, credential theft, or exfiltration behavior detected.

3

Arquivos analisados

1,126

Linhas analisadas

4

achados

claude

Auditado por

Problemas de Baixo Risco (1)

SKILL.md:114-116

Standard development tool capabilities

The skill can read, write, and edit files in the project directory. It can also execute bash commands for testing and validation. These are standard capabilities for a development tool but could theoretically be misused if the agent prompt were compromised. The skill uses plan mode for safety, requiring user approval before applying changes.

Fatores de risco

⚡ Contém scripts (1)

SKILL.md:159-163

⚙️ Comandos externos (1)

SKILL.md:112-160

📁 Acesso ao sistema de arquivos (1)

SKILL.md:112-116

Versão da auditoria 3

Baixo Risco

Jan 10, 2026, 01:24 PM

This is a legitimate ML implementation skill with standard development capabilities. It operates in plan mode with user approval for all changes. No malicious patterns, credential theft, or exfiltration behavior detected. Risk comes only from standard development tool capabilities.

2

Arquivos analisados

873

Linhas analisadas

4

achados

claude

Auditado por

Problemas de Baixo Risco (1)

SKILL.md:114-116 SKILL.md:122-124

Standard development tool capabilities

The skill can read, write, and edit files in the project directory. It can also execute bash commands for testing and validation. These are standard capabilities for a development tool but could theoretically be misused if the agent prompt were compromised. The skill uses plan mode for safety, requiring user approval before applying changes.

Fatores de risco

📁 Acesso ao sistema de arquivos (2)

SKILL.md:114-116 SKILL.md:122-124

⚙️ Comandos externos (1)

SKILL.md:123

⚡ Contém scripts (1)

SKILL.md:159-163

Versão da auditoria 2

Baixo Risco

Jan 10, 2026, 01:24 PM

This is a legitimate ML implementation skill with standard development capabilities. It operates in plan mode with user approval for all changes. No malicious patterns, credential theft, or exfiltration behavior detected. Risk comes only from standard development tool capabilities.

2

Arquivos analisados

873

Linhas analisadas

4

achados

claude

Auditado por

Problemas de Baixo Risco (1)

SKILL.md:114-116 SKILL.md:122-124

Standard development tool capabilities

The skill can read, write, and edit files in the project directory. It can also execute bash commands for testing and validation. These are standard capabilities for a development tool but could theoretically be misused if the agent prompt were compromised. The skill uses plan mode for safety, requiring user approval before applying changes.

Fatores de risco

📁 Acesso ao sistema de arquivos (2)

SKILL.md:114-116 SKILL.md:122-124

⚙️ Comandos externos (1)

SKILL.md:123

⚡ Contém scripts (1)

SKILL.md:159-163

Versão da auditoria 1

Baixo Risco

Jan 10, 2026, 01:24 PM

This is a legitimate ML implementation skill with standard development capabilities. It operates in plan mode with user approval for all changes. No malicious patterns, credential theft, or exfiltration behavior detected. Risk comes only from standard development tool capabilities.

2

Arquivos analisados

873

Linhas analisadas

4

achados

claude

Auditado por

Problemas de Baixo Risco (1)

SKILL.md:114-116 SKILL.md:122-124

Standard development tool capabilities

The skill can read, write, and edit files in the project directory. It can also execute bash commands for testing and validation. These are standard capabilities for a development tool but could theoretically be misused if the agent prompt were compromised. The skill uses plan mode for safety, requiring user approval before applying changes.

Fatores de risco

📁 Acesso ao sistema de arquivos (2)

SKILL.md:114-116 SKILL.md:122-124

⚙️ Comandos externos (1)

SKILL.md:123

⚡ Contém scripts (1)

SKILL.md:159-163