Habilidades when-developing-ml-models-use-ml-expert Histórico de Auditoria
🧠

Histórico de Auditoria

when-developing-ml-models-use-ml-expert - 5 auditorias

Versão da auditoria 5

Mais recente Baixo Risco

Jan 17, 2026, 03:49 AM

This skill is a legitimate machine learning development workflow containing standard ML patterns. The 75 static findings are FALSE POSITIVEs: hash identifiers misclassified as C2 keywords, markdown code fences misclassified as Ruby backtick execution, and hash strings misclassified as weak cryptography. All detected operations (file I/O, model serialization, distributed training) are standard ML engineering practices with no malicious intent.

5
Arquivos analisados
937
Linhas analisadas
6
achados
claude
Auditado por
Problemas de Risco Médio (2)
SKILL.md:60
CSV File Loading Without Validation
The skill loads CSV files with pd.read_csv() without path validation
README.md:14-18
External Command Execution via claude-flow
The skill executes npx claude-flow@alpha for skill orchestration
Problemas de Baixo Risco (1)
SKILL.md:300
Model File Serialization Without Integrity Checks
Model files are saved and loaded without cryptographic verification

Fatores de risco

📁 Acesso ao sistema de arquivos (2)
SKILL.md:112-114 SKILL.md:365-375
🌐 Acesso à rede (1)
SKILL.md:267-281
⚙️ Comandos externos (1)
README.md:14-18

Versão da auditoria 4

Baixo Risco

Jan 17, 2026, 03:49 AM

This skill is a legitimate machine learning development workflow containing standard ML patterns. The 75 static findings are FALSE POSITIVEs: hash identifiers misclassified as C2 keywords, markdown code fences misclassified as Ruby backtick execution, and hash strings misclassified as weak cryptography. All detected operations (file I/O, model serialization, distributed training) are standard ML engineering practices with no malicious intent.

5
Arquivos analisados
937
Linhas analisadas
6
achados
claude
Auditado por
Problemas de Risco Médio (2)
SKILL.md:60
CSV File Loading Without Validation
The skill loads CSV files with pd.read_csv() without path validation
README.md:14-18
External Command Execution via claude-flow
The skill executes npx claude-flow@alpha for skill orchestration
Problemas de Baixo Risco (1)
SKILL.md:300
Model File Serialization Without Integrity Checks
Model files are saved and loaded without cryptographic verification

Fatores de risco

📁 Acesso ao sistema de arquivos (2)
SKILL.md:112-114 SKILL.md:365-375
🌐 Acesso à rede (1)
SKILL.md:267-281
⚙️ Comandos externos (1)
README.md:14-18

Versão da auditoria 3

Risco Médio

Jan 10, 2026, 01:38 PM

The ML Expert skill is a legitimate machine learning development workflow with standard ML practices. It involves file I/O operations for data loading and model saving, external dependencies for ML frameworks, and optional distributed training via Flow-Nexus. While these capabilities could potentially be misused, the code follows standard ML development patterns with no evidence of malicious intent.

4
Arquivos analisados
647
Linhas analisadas
7
achados
claude
Auditado por
Problemas de Risco Médio (2)
SKILL.md:60
Arbitrary CSV File Loading Without Validation
The skill loads CSV files directly with `pd.read_csv('dataset.csv')` without any validation of the file path or content. This could allow loading of malicious files if an attacker controls the filename or path.
README.md:14-18
Command Execution via claude-flow
The skill executes external commands through `npx claude-flow@alpha skill-run` which could be exploited if input parameters are not properly sanitized.
Problemas de Baixo Risco (2)
SKILL.md:300
Model File Serialization Without Integrity Checks
The skill saves and loads model files (`model.save()`, `tf.keras.models.load_model()`) without verifying file integrity, which could lead to loading of tampered models.
SKILL.md:375
Preprocessing Pipeline Persistence
Scaler objects are saved with `joblib.dump(scaler, 'scaler.pkl')` which could be tampered with to manipulate data preprocessing.

Fatores de risco

📁 Acesso ao sistema de arquivos (4)
SKILL.md:60 SKILL.md:112-114 SKILL.md:365-375 SKILL.md:380-389
🌐 Acesso à rede (1)
SKILL.md:267-281
⚙️ Comandos externos (1)
README.md:14-18

Versão da auditoria 2

Risco Médio

Jan 10, 2026, 01:38 PM

The ML Expert skill is a legitimate machine learning development workflow with standard ML practices. It involves file I/O operations for data loading and model saving, external dependencies for ML frameworks, and optional distributed training via Flow-Nexus. While these capabilities could potentially be misused, the code follows standard ML development patterns with no evidence of malicious intent.

4
Arquivos analisados
647
Linhas analisadas
7
achados
claude
Auditado por
Problemas de Risco Médio (2)
SKILL.md:60
Arbitrary CSV File Loading Without Validation
The skill loads CSV files directly with `pd.read_csv('dataset.csv')` without any validation of the file path or content. This could allow loading of malicious files if an attacker controls the filename or path.
README.md:14-18
Command Execution via claude-flow
The skill executes external commands through `npx claude-flow@alpha skill-run` which could be exploited if input parameters are not properly sanitized.
Problemas de Baixo Risco (2)
SKILL.md:300
Model File Serialization Without Integrity Checks
The skill saves and loads model files (`model.save()`, `tf.keras.models.load_model()`) without verifying file integrity, which could lead to loading of tampered models.
SKILL.md:375
Preprocessing Pipeline Persistence
Scaler objects are saved with `joblib.dump(scaler, 'scaler.pkl')` which could be tampered with to manipulate data preprocessing.

Fatores de risco

📁 Acesso ao sistema de arquivos (4)
SKILL.md:60 SKILL.md:112-114 SKILL.md:365-375 SKILL.md:380-389
🌐 Acesso à rede (1)
SKILL.md:267-281
⚙️ Comandos externos (1)
README.md:14-18

Versão da auditoria 1

Risco Médio

Jan 10, 2026, 01:38 PM

The ML Expert skill is a legitimate machine learning development workflow with standard ML practices. It involves file I/O operations for data loading and model saving, external dependencies for ML frameworks, and optional distributed training via Flow-Nexus. While these capabilities could potentially be misused, the code follows standard ML development patterns with no evidence of malicious intent.

4
Arquivos analisados
647
Linhas analisadas
7
achados
claude
Auditado por
Problemas de Risco Médio (2)
SKILL.md:60
Arbitrary CSV File Loading Without Validation
The skill loads CSV files directly with `pd.read_csv('dataset.csv')` without any validation of the file path or content. This could allow loading of malicious files if an attacker controls the filename or path.
README.md:14-18
Command Execution via claude-flow
The skill executes external commands through `npx claude-flow@alpha skill-run` which could be exploited if input parameters are not properly sanitized.
Problemas de Baixo Risco (2)
SKILL.md:300
Model File Serialization Without Integrity Checks
The skill saves and loads model files (`model.save()`, `tf.keras.models.load_model()`) without verifying file integrity, which could lead to loading of tampered models.
SKILL.md:375
Preprocessing Pipeline Persistence
Scaler objects are saved with `joblib.dump(scaler, 'scaler.pkl')` which could be tampered with to manipulate data preprocessing.

Fatores de risco

📁 Acesso ao sistema de arquivos (4)
SKILL.md:60 SKILL.md:112-114 SKILL.md:365-375 SKILL.md:380-389
🌐 Acesso à rede (1)
SKILL.md:267-281
⚙️ Comandos externos (1)
README.md:14-18
← Voltar para Skill