📦

审计历史

routeros-fundamentals - 2 审计

审计版本 2

最新安全

Apr 16, 2026, 09:03 PM

Security scan detected 1898 potential issues, but all are false positives. The skill consists entirely of markdown documentation files containing RouterOS v7 reference material. The static scanner misidentified markdown code fences (backticks around code blocks) as Ruby shell execution, API documentation examples as code implementation, and common networking terminology as command-and-control indicators. No executable code, no credential exfiltration, no network access, and no malicious patterns exist. This is legitimate educational documentation for MikroTik RouterOS administrators.

已扫描文件

3,265

分析行数

发现项

claude

审计者

未发现安全问题

风险因素

⚙️ 外部命令 (14)

SKILL.md:41-59 references/scripting.md:10-323 references/async-commands-rest.md:10-205 references/bun-runtime-gotchas.md:5-99 references/device-mode-rest.md:3-202 references/device-mode.md:5-68 references/extra-packages.md:6-89 references/licensing-rest.md:1-142 references/packages-rest.md:1-159 references/rest-api-patterns.md:9-152 references/routeros-firewall-rest.md:3-489 references/routeros-networking-rest.md:9-610 references/routeros-users-rest.md:1-401 references/version-parsing.md:5-146

🌐 网络访问 (11)

SKILL.md:48-54 references/rest-api-patterns.md:19-126 references/routeros-firewall-rest.md:13-465 references/routeros-networking-rest.md:22-585 references/routeros-users-rest.md:28-397 references/device-mode-rest.md:174-177 references/packages-rest.md:47-111 references/licensing-rest.md:54-86 references/bun-runtime-gotchas.md:11-90 references/version-parsing.md:91-110 references/extra-packages.md:63-84

审计版本 1

低风险

Mar 30, 2026, 02:06 AM

Static analyzer flagged 434 patterns but all are false positives on documentation content. The skill contains RouterOS CLI reference material and TypeScript usage examples - no executable code. External command patterns are RouterOS CLI syntax (/system/print), network patterns are documentation examples for REST API usage, and crypto/C2 keywords are version strings (rc=release candidate). Safe for publication with minor documentation risk warnings.

已扫描文件

804

分析行数

发现项

claude

审计者

低风险问题 (2)

references/device-mode.md:5-15 references/scripting.md:146-152

Documentation Contains System Command Examples

Skill documentation includes RouterOS CLI command examples that could be misused if users copy commands without understanding context. Commands like /system/reboot and /disk/format are documented for educational purposes.

SKILL.md:75-76 references/rest-api-patterns.md:98-106

Network Configuration Examples with Default Credentials

Documentation shows RouterOS default authentication pattern (admin with empty password) which is accurate for fresh installations but could normalize insecure practices if users do not change defaults.

风险因素

⚙️ 外部命令 (3)

SKILL.md:10-35 references/device-mode.md:5-63 references/scripting.md:5-163

🌐 网络访问 (3)

SKILL.md:71-130 references/rest-api-patterns.md:19-150 references/version-parsing.md:90-145

📁 文件系统访问 (1)

references/version-parsing.md:136-145

← 返回技能