Навыки binary-re-synthesis История аудитов
📦

История аудитов

binary-re-synthesis - 4 аудиты

Версия аудита 4

Последняя Низкий риск

Jun 27, 2026, 04:08 PM

Static analysis flagged shell syntax, network indicators, weak cryptography terms, log paths, and reconnaissance language. Review found these are Markdown examples for binary-analysis reports, not executable code or operational instructions. No prompt injection, data exfiltration, or malicious execution behavior was found.

1
Просканировано файлов
374
Проанализировано строк
5
Review items
0
False positives ignored

Confirmed security concerns (5)

Низкий
External Command Matches Are Markdown Examples
FALSE_POSITIVE: The backtick detections are fenced Markdown examples and report templates. They do not invoke a shell, run Ruby code, or define executable behavior.
The matched lines are Markdown fence boundaries and sample report blocks. No executable Ruby, shell command, script file, or command dispatch is present.
Низкий
Hardcoded IP Address Is Sample Evidence
FALSE_POSITIVE: The IP address appears in a correlation example showing how to document observed network behavior in a report.
The line is inside a narrative example and is not used as a destination by skill code. No network request mechanism exists in the skill.
Низкий
Weak Cryptography Terms Are Documentation Labels
FALSE_POSITIVE: The SHA256, MD5, DES, and hash references are report fields or checklist examples. They do not implement cryptography.
The references are plain text in templates and examples. There is no cryptographic library call, hashing implementation, or security-sensitive crypto choice.
Низкий
Log File Deletion Finding Is A Log Path Example
FALSE_POSITIVE: The flagged log reference describes an example binary writing a log file. It does not delete, truncate, or hide logs.
The line is part of a sample final report entry and states that logging writes to a path. No deletion language or executable command is present.
Низкий
System Reconnaissance Match Is Skill Scope Text
FALSE_POSITIVE: The description names binary analysis phases and reporting tasks. It does not collect host information or perform reconnaissance.
The text defines the skill purpose and contains no host probing instructions. The broader domain is dual use, so residual risk is low rather than safe.
Аудитор:: codex

Версия аудита 3

Безопасно

Jan 16, 2026, 12:46 PM

Pure documentation skill containing only markdown methodology and templates. No executable code, no file system access, no network operations. Contains no code execution paths. Static findings are false positives caused by pattern matching on benign security documentation describing malware analysis methodology. Safe for publication.

2
Просканировано файлов
554
Проанализировано строк
2
Review items
0
False positives ignored
Аудитор:: claude

Версия аудита 2

Безопасно

Jan 16, 2026, 12:46 PM

Pure documentation skill containing only markdown methodology and templates. No executable code, no file system access, no network operations. Contains no code execution paths. Static findings are false positives caused by pattern matching on benign security documentation describing malware analysis methodology. Safe for publication.

2
Просканировано файлов
554
Проанализировано строк
2
Review items
0
False positives ignored
Аудитор:: claude

Версия аудита 1

Безопасно

Jan 10, 2026, 09:06 AM

Pure documentation skill containing only markdown methodology and templates. No executable code, no file system access, no network operations. Contains no code execution paths. Safe for publication.

1
Просканировано файлов
374
Проанализировано строк
0
Review items
0
False positives ignored
Проблем безопасности не найдено
Аудитор:: claude