技能 memory 審計紀錄
📦

審計紀錄

memory - 6 審計

審計版本 6

最新 低風險

Jun 28, 2026, 08:10 PM

Static command-execution and weak-crypto findings are false positives caused by Markdown examples, inline paths, YAML frontmatter, and Japanese text entropy. No prompt injection, network access, credential access, or obfuscated payload behavior was found. The skill is publishable with low risk because it intentionally edits local workflow files and may use local Bash commands for backups and diffs.

4
已掃描檔案
467
分析行數
5
發現
codex
審計單位
低風險問題 (3)
Markdown Examples Misclassified as Command Execution
FALSE_POSITIVE: The static command findings are Markdown code fences and inline examples for Plans.md parsing, task counting, backup creation, and date formatting. No standalone executable script or hidden command runner is included in the skill files.
Weak Crypto and Entropy Alerts Are Textual False Positives
FALSE_POSITIVE: The high-severity weak-crypto and entropy findings point to YAML frontmatter descriptions and Japanese documentation text. No hashing routine, cipher use, encoded payload, decoder, or encrypted blob was found.
Expected Local File Modification Requires User Awareness
TRUE_POSITIVE: The skill is intended to create and edit local memory and workflow files, including AGENTS.md, CLAUDE.md, Plans.md, and backup copies. This is expected behavior, but users should review diffs because these files can influence future assistant behavior.

風險因素

⚙️ 外部命令 (96)
init-memory-ssot/doc.md:14 init-memory-ssot/doc.md:16 init-memory-ssot/doc.md:17 init-memory-ssot/doc.md:18 init-memory-ssot/doc.md:20 init-memory-ssot/doc.md:28 init-memory-ssot/doc.md:29 init-memory-ssot/doc.md:30 init-memory-ssot/doc.md:38 init-memory-ssot/doc.md:39 init-memory-ssot/doc.md:40 init-memory-ssot/doc.md:42 init-memory-ssot/doc.md:42 init-memory-ssot/doc.md:47 init-memory-ssot/doc.md:47 merge-plans/doc.md:29-49 merge-plans/doc.md:49-57 merge-plans/doc.md:57-67 merge-plans/doc.md:67-71 merge-plans/doc.md:71-94 merge-plans/doc.md:94-98 merge-plans/doc.md:98-114 merge-plans/doc.md:114-118 merge-plans/doc.md:118-163 merge-plans/doc.md:163-164 merge-plans/doc.md:164-165 merge-plans/doc.md:165-166 merge-plans/doc.md:166-167 merge-plans/doc.md:167-168 merge-plans/doc.md:168-169 merge-plans/doc.md:169-170 merge-plans/doc.md:170-180 merge-plans/doc.md:180-188 merge-plans/doc.md:188-194 merge-plans/doc.md:194-202 merge-plans/doc.md:202-213 merge-plans/doc.md:213-225 merge-plans/doc.md:225-226 merge-plans/doc.md:226-227 merge-plans/doc.md:227-228 merge-plans/doc.md:228-229 merge-plans/doc.md:229-230 merge-plans/doc.md:230-236 merge-plans/doc.md:236-244 merge-plans/doc.md:244-250 merge-plans/doc.md:250-251 merge-plans/doc.md:90 merge-plans/doc.md:91 merge-plans/doc.md:92 merge-plans/doc.md:93 merge-plans/doc.md:104 merge-plans/doc.md:105 merge-plans/doc.md:106 merge-plans/doc.md:107 merge-plans/doc.md:208 merge-plans/doc.md:243 merge-plans/doc.md:71-94 merge-plans/doc.md:98-114 merge-plans/doc.md:202-213 merge-plans/doc.md:236-244 migrate-workflow-files/doc.md:18 migrate-workflow-files/doc.md:19 migrate-workflow-files/doc.md:20 migrate-workflow-files/doc.md:26 migrate-workflow-files/doc.md:26 migrate-workflow-files/doc.md:39 migrate-workflow-files/doc.md:39 migrate-workflow-files/doc.md:40 migrate-workflow-files/doc.md:40 migrate-workflow-files/doc.md:42 migrate-workflow-files/doc.md:43 migrate-workflow-files/doc.md:44 migrate-workflow-files/doc.md:46 migrate-workflow-files/doc.md:47 migrate-workflow-files/doc.md:48 migrate-workflow-files/doc.md:56 migrate-workflow-files/doc.md:56 migrate-workflow-files/doc.md:56 migrate-workflow-files/doc.md:56 migrate-workflow-files/doc.md:64 migrate-workflow-files/doc.md:68 migrate-workflow-files/doc.md:86 migrate-workflow-files/doc.md:90 migrate-workflow-files/doc.md:91 migrate-workflow-files/doc.md:92 migrate-workflow-files/doc.md:94 migrate-workflow-files/doc.md:94 migrate-workflow-files/doc.md:94 migrate-workflow-files/doc.md:100 migrate-workflow-files/doc.md:117 migrate-workflow-files/doc.md:125 migrate-workflow-files/doc.md:125 migrate-workflow-files/doc.md:125 migrate-workflow-files/doc.md:126 migrate-workflow-files/doc.md:39 migrate-workflow-files/doc.md:39
📁 檔案系統存取 (1)

審計版本 5

低風險

Jan 16, 2026, 07:55 PM

Low-risk utility skill for memory management. All static findings are false positives: command patterns are documentation examples in markdown files, 'weak crypto' flags are YAML frontmatter and SHA256 hashes, and 'C2 keywords' are standard git terminology (merge, migrate). The skill operates within its documented tool permissions, accessing only .claude/ directories and using Bash only for backup creation.

5
已掃描檔案
723
分析行數
2
發現
claude
審計單位
未發現安全問題

審計版本 4

低風險

Jan 16, 2026, 07:55 PM

Low-risk utility skill for memory management. All static findings are false positives: command patterns are documentation examples in markdown files, 'weak crypto' flags are YAML frontmatter and SHA256 hashes, and 'C2 keywords' are standard git terminology (merge, migrate). The skill operates within its documented tool permissions, accessing only .claude/ directories and using Bash only for backup creation.

5
已掃描檔案
723
分析行數
2
發現
claude
審計單位
未發現安全問題

審計版本 3

低風險

Jan 10, 2026, 12:15 PM

Low-risk utility skill for memory management. All capabilities match stated purpose. Filesystem access is limited to .claude/ directory for memory files. Bash tool is used only for backup file operations. No network calls or environment variable access detected.

4
已掃描檔案
467
分析行數
2
發現
claude
審計單位
未發現安全問題

審計版本 2

低風險

Jan 10, 2026, 12:15 PM

Low-risk utility skill for memory management. All capabilities match stated purpose. Filesystem access is limited to .claude/ directory for memory files. Bash tool is used only for backup file operations. No network calls or environment variable access detected.

4
已掃描檔案
467
分析行數
2
發現
claude
審計單位
未發現安全問題

審計版本 1

低風險

Jan 10, 2026, 12:15 PM

Low-risk utility skill for memory management. All capabilities match stated purpose. Filesystem access is limited to .claude/ directory for memory files. Bash tool is used only for backup file operations. No network calls or environment variable access detected.

4
已掃描檔案
467
分析行數
2
發現
claude
審計單位
未發現安全問題