審計紀錄
iotnet - 6 審計
審計版本 6
最新 中風險Jun 28, 2026, 06:07 PM
Static analysis found many shell command examples and sudo-based live capture instructions. Review confirms these are documentation for an IoT network security tool, not hidden malware, but they can run external commands with user-provided paths, filters, and elevated privileges. Weak cryptography and hardcoded IP indicators appear to be false positives or examples; no prompt injection or exfiltration intent was found.
中風險問題 (2)
低風險問題 (2)
風險因素
偵測到的模式
審計版本 5
低風險Jan 16, 2026, 08:00 PM
This is a pure documentation skill providing AI guidance for using the iotnet network analysis tool. Static findings are false positives: the scanner misinterpreted markdown code formatting as shell execution, documented sudo requirements for legitimate packet capture as privilege escalation, and references to detecting weak cryptography as actual weak algorithms. The skill explicitly requires authorization and is designed for defensive security assessment.
風險因素
⚙️ 外部命令 (4)
審計版本 4
低風險Jan 16, 2026, 08:00 PM
This is a pure documentation skill providing AI guidance for using the iotnet network analysis tool. Static findings are false positives: the scanner misinterpreted markdown code formatting as shell execution, documented sudo requirements for legitimate packet capture as privilege escalation, and references to detecting weak cryptography as actual weak algorithms. The skill explicitly requires authorization and is designed for defensive security assessment.
風險因素
⚙️ 外部命令 (4)
審計版本 3
安全Jan 10, 2026, 11:33 AM
This is a pure prompt-based skill containing only a SKILL.md instruction file. The skill provides guidance to AI assistants on how to help users analyze IoT network traffic using the external iotnet tool. No executable code, scripts, network calls, or file system access are performed by the skill itself.
審計版本 2
安全Jan 10, 2026, 11:33 AM
This is a pure prompt-based skill containing only a SKILL.md instruction file. The skill provides guidance to AI assistants on how to help users analyze IoT network traffic using the external iotnet tool. No executable code, scripts, network calls, or file system access are performed by the skill itself.
審計版本 1
安全Jan 10, 2026, 11:33 AM
This is a pure prompt-based skill containing only a SKILL.md instruction file. The skill provides guidance to AI assistants on how to help users analyze IoT network traffic using the external iotnet tool. No executable code, scripts, network calls, or file system access are performed by the skill itself.