История аудитов
wp-block-themes - 7 аудиты
Версия аудита 7
Последняя Низкий рискJun 28, 2026, 11:44 AM
Static analysis reported many high-risk patterns, but review found no malicious intent, no prompt injection, and no confirmed weak cryptography. Most command and crypto matches are Markdown backticks around WordPress terms, file paths, or documentation links. The only real concern is a local Node.js helper that reads the current repository to detect block theme folders.
Проблемы низкого риска (4)
Факторы риска
⚡ Содержит скрипты (1)
⚙️ Внешние команды (2)
🌐 Доступ к сети (6)
Версия аудита 6
Низкий рискJan 16, 2026, 05:50 PM
This skill provides documentation and guidance for WordPress block theme development. The only executable script (detect_block_themes.mjs) safely reads theme.json files using bounded filesystem operations with no network access or command execution. All 92 static findings are false positives: markdown backticks are misinterpreted as shell execution, documentation URLs as network calls, and JSON content hashes as C2 indicators.
Проблемы среднего риска (1)
Факторы риска
📁 Доступ к файловой системе (1)
Версия аудита 5
Низкий рискJan 16, 2026, 05:50 PM
This skill provides documentation and guidance for WordPress block theme development. The only executable script (detect_block_themes.mjs) safely reads theme.json files using bounded filesystem operations with no network access or command execution. All 92 static findings are false positives: markdown backticks are misinterpreted as shell execution, documentation URLs as network calls, and JSON content hashes as C2 indicators.
Проблемы среднего риска (1)
Факторы риска
📁 Доступ к файловой системе (1)
Версия аудита 4
Низкий рискJan 16, 2026, 05:50 PM
This skill provides documentation and guidance for WordPress block theme development. The only executable script (detect_block_themes.mjs) safely reads theme.json files using bounded filesystem operations with no network access or command execution. All 92 static findings are false positives: markdown backticks are misinterpreted as shell execution, documentation URLs as network calls, and JSON content hashes as C2 indicators.
Проблемы среднего риска (1)
Факторы риска
📁 Доступ к файловой системе (1)
Версия аудита 3
Низкий рискJan 10, 2026, 10:42 AM
This skill provides guidance and tooling for WordPress block theme development. The included script (detect_block_themes.mjs) safely scans repositories for theme.json files with bounded filesystem access and no network or command execution capabilities. All behavior matches the stated purpose.
Факторы риска
⚡ Содержит скрипты (1)
📁 Доступ к файловой системе (1)
Версия аудита 2
Низкий рискJan 10, 2026, 10:42 AM
This skill provides guidance and tooling for WordPress block theme development. The included script (detect_block_themes.mjs) safely scans repositories for theme.json files with bounded filesystem access and no network or command execution capabilities. All behavior matches the stated purpose.
Факторы риска
⚡ Содержит скрипты (1)
📁 Доступ к файловой системе (1)
Версия аудита 1
Низкий рискJan 10, 2026, 10:42 AM
This skill provides guidance and tooling for WordPress block theme development. The included script (detect_block_themes.mjs) safely scans repositories for theme.json files with bounded filesystem access and no network or command execution capabilities. All behavior matches the stated purpose.