技能 baseline-ui 審計歷史
📦

審計歷史

baseline-ui - 2 審計

審計版本 2

最新 安全

Feb 10, 2026, 09:04 AM

All 54 static findings are FALSE POSITIVES. The scanner misinterpreted Markdown documentation syntax (backtick characters) as Ruby shell commands and UI terminology as security threats. This skill is pure documentation with no executable code, network requests, or security risks.

1
已掃描檔案
86
分析行數
6
發現項
claude
審計者
中風險問題 (1)
SKILL.md:12SKILL.md:15SKILL.md:24SKILL.md:25SKILL.md:26SKILL.md:30SKILL.md:33SKILL.md:39SKILL.md:41SKILL.md:42SKILL.md:44SKILL.md:49SKILL.md:50SKILL.md:51SKILL.md:52SKILL.md:53SKILL.md:55SKILL.md:61SKILL.md:62SKILL.md:63SKILL.md:64SKILL.md:68SKILL.md:69SKILL.md:73SKILL.md:74SKILL.md:75
Backtick Syntax Misinterpretation
Scanner flagged 48 locations as 'Ruby/shell backtick execution' but these are Markdown code block syntax in documentation, not executable code.
低風險問題 (3)
SKILL.md:33
Documentation URL Reference
Scanner flagged line 33 URL as 'Hardcoded URL' but this is a documentation reference link.
SKILL.md:3SKILL.md:39SKILL.md:77
UI Terminology Misinterpretation
Scanner misinterpreted UI terms (baseline, AlertDialog, gradients) as cryptographic/security terms.
SKILL.md:51SKILL.md:57
CSS Property Misinterpretation
Scanner misinterpreted CSS property names (background, images) as system reconnaissance terms.

風險因素

⚙️ 外部命令
未記錄任何特定位置
🌐 網路存取
未記錄任何特定位置

審計版本 1

安全

Feb 9, 2026, 09:02 AM

All static findings are false positives. SKILL.md is a text-based UI guideline document containing only markdown documentation with inline code references. No executable code, command execution, network requests, or cryptographic operations exist. The skill is purely informational guidance.

1
已掃描檔案
86
分析行數
0
發現項
claude
審計者
未發現安全問題
← 返回技能