技能 creating-financial-models 審計歷史
📦

審計歷史

creating-financial-models - 6 審計

審計版本 6

最新 安全

Jun 28, 2026, 10:35 AM

Static findings were reviewed in context and dismissed as false positives. The flagged Markdown backticks identify script filenames, the weak-crypto alert is the DCF acronym, and the reconnaissance alerts are arithmetic in a binary search routine.

3
已掃描檔案
1,095
分析行數
3
發現項
codex
審計者
低風險問題 (3)
SKILL.md:3
False Positive: DCF Acronym Matched Weak Crypto Pattern
The high severity weak cryptographic algorithm alerts point to SKILL.md line 3, which describes DCF analysis. No cryptographic function or hashing implementation is present at that location.
SKILL.md:147-148
False Positive: Markdown Backticks Around Filenames
The external command alerts point to Markdown list items naming dcf_model.py and sensitivity_analysis.py. These are documentation references and are not shell execution.
sensitivity_analysis.py:285sensitivity_analysis.py:290-294
False Positive: Binary Search Arithmetic Flagged As Reconnaissance
The system reconnaissance alerts point to midpoint and bound updates inside breakeven_analysis. The code performs numeric binary search and does not inspect the host system.

審計版本 5

安全

Jan 21, 2026, 03:58 PM

This financial modeling skill contains legitimate Python code for DCF analysis and sensitivity testing. All static findings are false positives from the pattern scanner detecting template artifacts and documentation examples. No actual security risks identified.

4
已掃描檔案
1,324
分析行數
0
發現項
claude
審計者
未發現安全問題

審計版本 4

中風險

Jan 16, 2026, 05:11 PM

AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.

4
已掃描檔案
1,282
分析行數
1
發現項
claude
審計者
未發現安全問題

風險因素

⚙️ 外部命令 (2)
SKILL.md:147 SKILL.md:148

偵測到的模式

System reconnaissanceWeak cryptographic algorithmRuby/shell backtick execution

審計版本 3

中風險

Jan 16, 2026, 05:11 PM

AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.

4
已掃描檔案
1,282
分析行數
1
發現項
claude
審計者
未發現安全問題

風險因素

⚙️ 外部命令 (2)
SKILL.md:147 SKILL.md:148

偵測到的模式

System reconnaissanceWeak cryptographic algorithmRuby/shell backtick execution

審計版本 2

安全

Jan 6, 2026, 07:25 AM

Pure Python computational library for financial modeling with no file I/O, network access, or command execution. Code behavior matches stated purpose exactly.

3
已掃描檔案
1,095
分析行數
0
發現項
claude
審計者
未發現安全問題

審計版本 1

安全

Jan 6, 2026, 07:25 AM

Pure Python computational library for financial modeling with no file I/O, network access, or command execution. Code behavior matches stated purpose exactly.

3
已掃描檔案
1,095
分析行數
0
發現項
claude
審計者
未發現安全問題
← 返回技能