審計歷史
clinical-reports - 4 審計
審計版本 4
最新 安全Jan 17, 2026, 06:21 AM
This is a legitimate clinical documentation skill with no security concerns. All static findings are false positives caused by the scanner misinterpreting markdown documentation content. The 'weak cryptographic algorithm' detections are legitimate mentions of HIPAA compliance terms in documentation. The 'Ruby/shell backtick execution' detections are markdown code formatting syntax (`) not actual shell commands. The Python scripts are safe utilities that read files, parse regex patterns, and generate compliance reports with no command injection, credential access, or data exfiltration.
風險因素
⚙️ 外部命令 (1)
📁 檔案系統存取 (1)
審計版本 3
安全Jan 17, 2026, 06:21 AM
This is a legitimate clinical documentation skill with no security concerns. All static findings are false positives caused by the scanner misinterpreting markdown documentation content. The 'weak cryptographic algorithm' detections are legitimate mentions of HIPAA compliance terms in documentation. The 'Ruby/shell backtick execution' detections are markdown code formatting syntax (`) not actual shell commands. The Python scripts are safe utilities that read files, parse regex patterns, and generate compliance reports with no command injection, credential access, or data exfiltration.
風險因素
⚙️ 外部命令 (1)
📁 檔案系統存取 (1)
審計版本 2
安全Jan 12, 2026, 04:52 PM
All 560 static analysis findings are false positives. The skill contains no actual security vulnerabilities - it uses no cryptographic algorithms, executes no shell commands, and has no network operations. The tools are legitimate clinical documentation utilities that help ensure HIPAA compliance and proper medical reporting.
風險因素
審計版本 1
低風險Jan 4, 2026, 04:56 PM
This skill includes local Python scripts that read user-provided files and write local outputs. No network access, environment variable access, or external command execution found. Scripts perform legitimate clinical report validation and formatting tasks.