Histórico de Auditoria
matchms - 4 auditorias
Versão da auditoria 4
Mais recente SeguroJan 17, 2026, 06:24 AM
All 268 static findings are false positives. The analyzer incorrectly flagged markdown code blocks (backticks) as shell execution, InChIKey descriptions as cryptographic algorithms, scientific database URLs as network reconnaissance, and legitimate Python code examples as malicious patterns. Matchms is a legitimate open-source mass spectrometry library for metabolomics research.
Fatores de risco
⚡ Contém scripts (2)
⚙️ Comandos externos (3)
🌐 Acesso à rede (3)
📁 Acesso ao sistema de arquivos (1)
Versão da auditoria 3
SeguroJan 17, 2026, 06:24 AM
All 268 static findings are false positives. The analyzer incorrectly flagged markdown code blocks (backticks) as shell execution, InChIKey descriptions as cryptographic algorithms, scientific database URLs as network reconnaissance, and legitimate Python code examples as malicious patterns. Matchms is a legitimate open-source mass spectrometry library for metabolomics research.
Fatores de risco
⚡ Contém scripts (2)
⚙️ Comandos externos (3)
🌐 Acesso à rede (3)
📁 Acesso ao sistema de arquivos (1)
Versão da auditoria 2
SeguroJan 12, 2026, 05:08 PM
The static analyzer incorrectly flagged documentation code blocks as security issues. All findings are false positives - the 'weak cryptographic algorithm' and 'external commands' alerts stem from markdown documentation containing code examples and legitimate URLs to scientific resources. No actual security risks were found.
Fatores de risco
⚡ Contém scripts (1)
⚙️ Comandos externos (1)
🌐 Acesso à rede (1)
Versão da auditoria 1
SeguroJan 4, 2026, 04:58 PM
Documentation-only skill containing markdown guides and code examples for the matchms Python library. No executable code, no credential access, no network exfiltration. Pure prompt-based guidance.