📦

审计历史

crud-with-spec-kit - 6 审计

审计版本 6

最新 安全

Jun 28, 2026, 03:50 AM

The five high-severity static weak-cryptography alerts are false positives caused by normal prose in SKILL.md, including words such as description, describing, desired, and codes. No evidence found of cryptographic code, command execution, network access, data exfiltration, or prompt-injection attempts.

1
已扫描文件
192
分析行数
1
复核项
0
已忽略误报

已确认安全问题 (1)

False Positive: Weak Cryptographic Algorithm Alerts
Static analysis reported weak cryptographic algorithm patterns at the listed prose-only lines. These lines describe CRUD workflow concepts and contain no cryptographic algorithm use, implementation code, imports, or executable commands.
The matched lines are documentation text only, and none contain crypto APIs or algorithm names used as code. Confidence is very low that these alerts represent a real security issue.
审计者: codex

审计版本 5

安全

Jan 16, 2026, 03:44 PM

Pure documentation skill with no executable code. Static findings are false positives from the scanner misinterpreting documentation text as security patterns.

2
已扫描文件
369
分析行数
0
复核项
0
已忽略误报
未发现安全问题
审计者: claude

审计版本 4

安全

Jan 16, 2026, 03:44 PM

Pure documentation skill with no executable code. Static findings are false positives from the scanner misinterpreting documentation text as security patterns.

2
已扫描文件
369
分析行数
0
复核项
0
已忽略误报
未发现安全问题
审计者: claude

审计版本 3

安全

Jan 10, 2026, 09:48 AM

Pure documentation file containing only conceptual guidance. No executable code, scripts, network calls, or filesystem access detected. Safe for publication.

1
已扫描文件
192
分析行数
0
复核项
0
已忽略误报
未发现安全问题
审计者: claude

审计版本 2

安全

Jan 10, 2026, 09:48 AM

Pure documentation file containing only conceptual guidance. No executable code, scripts, network calls, or filesystem access detected. Safe for publication.

1
已扫描文件
192
分析行数
0
复核项
0
已忽略误报
未发现安全问题
审计者: claude

审计版本 1

安全

Jan 10, 2026, 09:48 AM

Pure documentation file containing only conceptual guidance. No executable code, scripts, network calls, or filesystem access detected. Safe for publication.

1
已扫描文件
192
分析行数
0
复核项
0
已忽略误报
未发现安全问题
审计者: claude