Histórico de Auditoria - research-grants

Versão da auditoria 4

Mais recente Seguro

Jan 17, 2026, 06:12 AM

All 306 static findings are false positives. This is a pure documentation skill containing markdown templates and guidelines for research grant writing. The scanner incorrectly flagged: (1) academic terminology as cryptographic algorithms, (2) education acronyms (REU, LSAMP) as Windows SAM database, (3) federal website URLs as hardcoded C2 URLs, (4) markdown code formatting backticks as shell execution. No executable code, network calls, or malicious patterns exist. The skill-report.json correctly identifies risk_level: safe.

13

Arquivos analisados

7,080

Linhas analisadas

2

achados

claude

Auditado por

Nenhum problema de segurança encontrado

Fatores de risco

🌐 Acesso à rede (1)

references/darpa_guidelines.md:11

⚙️ Comandos externos (1)

SKILL.md:46-48

Versão da auditoria 3

Seguro

Jan 17, 2026, 06:12 AM

All 306 static findings are false positives. This is a pure documentation skill containing markdown templates and guidelines for research grant writing. The scanner incorrectly flagged: (1) academic terminology as cryptographic algorithms, (2) education acronyms (REU, LSAMP) as Windows SAM database, (3) federal website URLs as hardcoded C2 URLs, (4) markdown code formatting backticks as shell execution. No executable code, network calls, or malicious patterns exist. The skill-report.json correctly identifies risk_level: safe.

13

Arquivos analisados

7,080

Linhas analisadas

2

achados

claude

Auditado por

Nenhum problema de segurança encontrado

Fatores de risco

🌐 Acesso à rede (1)

references/darpa_guidelines.md:11

⚙️ Comandos externos (1)

SKILL.md:46-48

Versão da auditoria 2

Seguro

Jan 12, 2026, 04:41 PM

This is a legitimate academic skill for research grant writing. All static analysis findings are false positives - the 'weak cryptographic algorithm' flags are from academic content about research methodologies, 'system reconnaissance' mentions are about literature review processes, and 'external command execution' are documentation examples, not actual executable code. No security risks identified.

12

Arquivos analisados

6,190

Linhas analisadas

2

achados

claude

Auditado por

Nenhum problema de segurança encontrado

Fatores de risco

🌐 Acesso à rede (47)

references/broader_impacts.md:373 references/broader_impacts.md:374 references/darpa_guidelines.md:11 references/darpa_guidelines.md:620 references/darpa_guidelines.md:621 references/darpa_guidelines.md:622 references/darpa_guidelines.md:624 references/darpa_guidelines.md:625 references/doe_guidelines.md:9 references/doe_guidelines.md:436 references/doe_guidelines.md:437 references/doe_guidelines.md:438 references/doe_guidelines.md:575 references/doe_guidelines.md:576 references/doe_guidelines.md:577 references/doe_guidelines.md:578 references/doe_guidelines.md:579 references/doe_guidelines.md:580 references/doe_guidelines.md:581 references/nih_guidelines.md:9 references/nih_guidelines.md:839 references/nih_guidelines.md:840 references/nih_guidelines.md:841 references/nih_guidelines.md:842 references/nih_guidelines.md:843 references/nih_guidelines.md:844 references/nih_guidelines.md:845 references/nih_guidelines.md:846 references/nsf_guidelines.md:9 references/nsf_guidelines.md:559 references/nsf_guidelines.md:560 references/nsf_guidelines.md:561 references/nsf_guidelines.md:562 references/nsf_guidelines.md:563 references/nsf_guidelines.md:564 references/nsf_guidelines.md:565 references/nstc_guidelines.md:9 references/nstc_guidelines.md:152 references/nstc_guidelines.md:169 references/nstc_guidelines.md:185 references/nstc_guidelines.md:214 references/nstc_guidelines.md:221 references/nstc_guidelines.md:733 references/README.md:248 references/README.md:249 references/README.md:250 references/README.md:251

⚙️ Comandos externos (79)

Versão da auditoria 1

Seguro

Jan 4, 2026, 04:44 PM

This is a pure documentation skill containing only markdown guidance files, templates, and JSON configuration. No executable code, scripts, or network activity. All references to external URLs are public agency websites (nsf.gov, nih.gov, energy.gov, darpa.mil) for informational purposes only.

13

Arquivos analisados

6,431

Linhas analisadas

0

achados

claude

Auditado por

Nenhum problema de segurança encontrado