技能 email 審計歷史
✉️

審計歷史

email - 3 審計

審計版本 3

最新 低風險

Jan 16, 2026, 12:49 PM

This is a legitimate email operations skill. All static findings are FALSE POSITIVES. The combination of shell scripts, network connections (IMAP/SMTP), and credential access (Keychain) is EXPECTED and INTENTIONAL for email functionality. Passwords are securely stored in macOS Keychain, never in config files. No malicious patterns, data exfiltration, or suspicious external connections detected.

9
已掃描檔案
1,595
分析行數
3
發現項
claude
審計者
未發現安全問題

審計版本 2

低風險

Jan 16, 2026, 12:49 PM

This is a legitimate email operations skill. All static findings are FALSE POSITIVES. The combination of shell scripts, network connections (IMAP/SMTP), and credential access (Keychain) is EXPECTED and INTENTIONAL for email functionality. Passwords are securely stored in macOS Keychain, never in config files. No malicious patterns, data exfiltration, or suspicious external connections detected.

9
已掃描檔案
1,595
分析行數
3
發現項
claude
審計者
未發現安全問題

審計版本 1

低風險

Jan 10, 2026, 09:14 AM

This email skill performs legitimate email operations using IMAP/SMTP protocols. Credentials are securely stored in macOS Keychain. No suspicious network endpoints or data exfiltration detected. The code behavior matches its stated purpose.

8
已掃描檔案
1,021
分析行數
6
發現項
claude
審計者
中風險問題 (1)
Email addresses stored in config file
The accounts.yaml configuration file contains email addresses (e.g., 'qihr2022@mail.sustech.edu.cn'). While these are public-facing identifiers and not sensitive credentials, storing them in plain text represents a minor privacy concern. Passwords are correctly stored in macOS Keychain.