技能 apktool 審計紀錄
📦

審計紀錄

apktool - 6 審計

審計版本 6

最新 中風險

Jun 28, 2026, 05:56 PM

Static analysis flagged many shell-command examples, secret-search terms, keystore references, and one /dev/null redirect. Review found these are mostly expected apktool guidance, not malware or prompt injection, but the skill remains medium risk because it guides command execution and dual-use APK reverse engineering.

1
已掃描檔案
529
分析行數
9
發現
codex
審計單位
中風險問題 (3)
SKILL.md:33-45SKILL.md:115-127SKILL.md:148-163SKILL.md:456-491
Extensive Shell Command Guidance
The skill repeatedly instructs users to run apktool, grep, find, strings, keytool, jarsigner, and shell pipelines against APK-derived files. This is legitimate for apktool analysis, but it creates command execution risk if users substitute untrusted paths or run commands in unsafe directories. Confidence: 0.82. Confidence reasoning: The commands are explicit and numerous, but they are documented examples for the stated security workflow rather than hidden execution logic.
SKILL.md:8-17SKILL.md:183-204SKILL.md:444-452
Dual-Use APK Reverse Engineering and Repackaging
The skill teaches APK decoding, smali/resource inspection, rebuilding, and signing. These capabilities support authorized security work, but can also support unauthorized app modification if misused. Confidence: 0.78. Confidence reasoning: The dual-use capability is clear from the documented workflows, while the file also includes ethics guidance limiting use to authorized APKs.
SKILL.md:356-370
Generated Shell Script Execution
The guide shows users how to create analyze.sh, make it executable, and run it over an unpacked APK directory. The script content is simple search logic, but generated executable scripts increase operational risk if copied into untrusted workspaces. Confidence: 0.76. Confidence reasoning: The script creation and execution steps are direct, but there is no evidence of persistence, obfuscation, network exfiltration, or malicious payloads.
低風險問題 (4)
SKILL.md:233
Secret Search Terms Are False Positive Credential Access
The scanner flagged env_access around api_key and secret terms, but the line is a grep command that searches decoded resources for hardcoded credentials. It does not read environment variables or local secret stores. Confidence: 0.94. Confidence reasoning: The cited line is plainly a search pattern against target-unpacked/res, not access to process environment data.
SKILL.md:194-197SKILL.md:431
Keystore References Are Signing Examples
The scanner flagged certificate and keystore file references, but the cited lines show standard Android APK signing examples. They do not collect, expose, or transmit private keys. Confidence: 0.90. Confidence reasoning: The commands use local placeholder keystore names for signing rebuilt APKs, which matches apktool workflow documentation.
SKILL.md:242
Device File Access Is Benign Error Redirection
The scanner flagged /dev/null access, but the line only suppresses missing-file errors while displaying network_security_config.xml. This is normal shell redirection and not device probing. Confidence: 0.96. Confidence reasoning: The command redirects stderr to /dev/null and reads a specific decoded APK XML file.
SKILL.md:3SKILL.md:346SKILL.md:495
Weak Cryptography Patterns Dismissed
The scanner reported weak cryptography blocker matches at general prose lines, but those lines do not contain weak cryptographic operations. The RSA 2048 signing example is conventional Android signing guidance, not evidence of malicious weak-crypto use. Confidence: 0.88. Confidence reasoning: The cited static locations are descriptive text, and no insecure hash or encryption implementation appears there.

風險因素

⚙️ 外部命令 (9)
SKILL.md:33-45 SKILL.md:115-127 SKILL.md:148-163 SKILL.md:187-204 SKILL.md:225-243 SKILL.md:300-316 SKILL.md:356-370 SKILL.md:456-491 SKILL.md:507-528
📁 檔案系統存取 (3)
SKILL.md:21-24 SKILL.md:270-281 SKILL.md:405-408

偵測到的模式

Command Examples With User-Controlled File PathsExecutable Analysis Script Pattern

審計版本 5

安全

Jan 16, 2026, 07:51 PM

This is a documentation-only skill containing instructional content for using apktool, a legitimate Android reverse engineering tool. All 97 static findings are false positives caused by markdown code examples showing bash commands for security analysis. The skill contains no executable code, only educational guidance for authorized security testing.

2
已掃描檔案
709
分析行數
3
發現
claude
審計單位
未發現安全問題

風險因素

⚙️ 外部命令 (65)
SKILL.md:33-35 SKILL.md:35-38 SKILL.md:38-40 SKILL.md:40-43 SKILL.md:43-45 SKILL.md:45-51 SKILL.md:51-70 SKILL.md:70-75 SKILL.md:75-79 SKILL.md:79-85 SKILL.md:85-89 SKILL.md:89-100 SKILL.md:100-103 SKILL.md:103-109 SKILL.md:109-110 SKILL.md:110-115 SKILL.md:115-127 SKILL.md:127-131 SKILL.md:131-142 SKILL.md:142-148 SKILL.md:148-163 SKILL.md:163-169 SKILL.md:169-181 SKILL.md:181-187 SKILL.md:187-189 SKILL.md:189-192 SKILL.md:192-204 SKILL.md:204-210 SKILL.md:210-219 SKILL.md:219-225 SKILL.md:225-243 SKILL.md:243-249 SKILL.md:249-266 SKILL.md:266-270 SKILL.md:270-282 SKILL.md:282-286 SKILL.md:286-293 SKILL.md:293-300 SKILL.md:300-316 SKILL.md:316-341 SKILL.md:341-344 SKILL.md:344-350 SKILL.md:350-351 SKILL.md:351-356 SKILL.md:356-370 SKILL.md:370-392 SKILL.md:392-394 SKILL.md:394-398 SKILL.md:398-399 SKILL.md:399-401 SKILL.md:401-406 SKILL.md:406-409 SKILL.md:409-414 SKILL.md:414-417 SKILL.md:417-422 SKILL.md:422-425 SKILL.md:425-430 SKILL.md:430-432 SKILL.md:432-456 SKILL.md:456-491 SKILL.md:491-507 SKILL.md:507-528 SKILL.md:305 SKILL.md:300-316 SKILL.md:359
📁 檔案系統存取 (1)
SKILL.md:242
🔑 環境變數 (1)
SKILL.md:233

審計版本 4

安全

Jan 16, 2026, 07:51 PM

This is a documentation-only skill containing instructional content for using apktool, a legitimate Android reverse engineering tool. All 97 static findings are false positives caused by markdown code examples showing bash commands for security analysis. The skill contains no executable code, only educational guidance for authorized security testing.

2
已掃描檔案
709
分析行數
3
發現
claude
審計單位
未發現安全問題

風險因素

⚙️ 外部命令 (65)
SKILL.md:33-35 SKILL.md:35-38 SKILL.md:38-40 SKILL.md:40-43 SKILL.md:43-45 SKILL.md:45-51 SKILL.md:51-70 SKILL.md:70-75 SKILL.md:75-79 SKILL.md:79-85 SKILL.md:85-89 SKILL.md:89-100 SKILL.md:100-103 SKILL.md:103-109 SKILL.md:109-110 SKILL.md:110-115 SKILL.md:115-127 SKILL.md:127-131 SKILL.md:131-142 SKILL.md:142-148 SKILL.md:148-163 SKILL.md:163-169 SKILL.md:169-181 SKILL.md:181-187 SKILL.md:187-189 SKILL.md:189-192 SKILL.md:192-204 SKILL.md:204-210 SKILL.md:210-219 SKILL.md:219-225 SKILL.md:225-243 SKILL.md:243-249 SKILL.md:249-266 SKILL.md:266-270 SKILL.md:270-282 SKILL.md:282-286 SKILL.md:286-293 SKILL.md:293-300 SKILL.md:300-316 SKILL.md:316-341 SKILL.md:341-344 SKILL.md:344-350 SKILL.md:350-351 SKILL.md:351-356 SKILL.md:356-370 SKILL.md:370-392 SKILL.md:392-394 SKILL.md:394-398 SKILL.md:398-399 SKILL.md:399-401 SKILL.md:401-406 SKILL.md:406-409 SKILL.md:409-414 SKILL.md:414-417 SKILL.md:417-422 SKILL.md:422-425 SKILL.md:425-430 SKILL.md:430-432 SKILL.md:432-456 SKILL.md:456-491 SKILL.md:491-507 SKILL.md:507-528 SKILL.md:305 SKILL.md:300-316 SKILL.md:359
📁 檔案系統存取 (1)
SKILL.md:242
🔑 環境變數 (1)
SKILL.md:233

審計版本 3

安全

Jan 10, 2026, 11:30 AM

Pure prompt-based skill containing only instructional content for using apktool. No executable code, no file system access, no network calls, no external command execution. The skill provides guidance for legitimate reverse engineering tasks including security analysis and vulnerability discovery.

1
已掃描檔案
529
分析行數
0
發現
claude
審計單位
未發現安全問題

審計版本 2

安全

Jan 10, 2026, 11:30 AM

Pure prompt-based skill containing only instructional content for using apktool. No executable code, no file system access, no network calls, no external command execution. The skill provides guidance for legitimate reverse engineering tasks including security analysis and vulnerability discovery.

1
已掃描檔案
529
分析行數
0
發現
claude
審計單位
未發現安全問題

審計版本 1

安全

Jan 10, 2026, 11:30 AM

Pure prompt-based skill containing only instructional content for using apktool. No executable code, no file system access, no network calls, no external command execution. The skill provides guidance for legitimate reverse engineering tasks including security analysis and vulnerability discovery.

1
已掃描檔案
529
分析行數
0
發現
claude
審計單位
未發現安全問題
← 回到技能