技能 routeros-command-tree 审计历史

📦

审计历史

routeros-command-tree - 3 审计

审计版本 3

最新低风险

May 9, 2026, 03:34 PM

Static analysis flagged 138 potential issues, but evaluation reveals 133 are false positives (markdown documentation patterns misinterpreted as code execution). Two network fetch() calls exist but are legitimate API queries to RouterOS /console/inspect endpoint - the documented core functionality. No malicious intent, command injection vectors, or actual security vulnerabilities present. Risk assessed as LOW due to intentional network access required for skill purpose.

1

已扫描文件

329

分析行数

2

发现项

claude

审计者

未发现安全问题

风险因素

🌐 网络访问 (2)

SKILL.md:79 SKILL.md:104

📁 文件系统访问 (1)

审计版本 2

安全

Apr 16, 2026, 09:00 PM

All 138 static findings are false positives. The skill is a documentation file containing markdown with code examples. The static scanner incorrectly flagged markdown syntax (backticks for code formatting), documentation code snippets (fetch examples), relative markdown links, and misinterpreted documentation text as security issues. No executable code exists in this skill.

1

已扫描文件

329

分析行数

0

发现项

claude

审计者

未发现安全问题

检测到的模式

Markdown Code Formatting Misidentified as Command ExecutionDocumentation Code Examples Misidentified as Network CallsMarkdown Links Misidentified as Path Traversal

审计版本 1

安全

Mar 30, 2026, 02:03 AM

All 138 static analysis findings are false positives from TypeScript code examples embedded in documentation. The file contains only technical documentation about RouterOS APIs with no executable code. No security risks detected.

1

已扫描文件

329

分析行数

0

发现项

claude

审计者

未发现安全问题

← 返回技能