技能 hybrid-search-implementation 審計歷史
🔍

審計歷史

hybrid-search-implementation - 5 審計

審計版本 5

最新 安全

Jan 21, 2026, 07:22 PM

All static findings are false positives. The skill contains documentation templates for hybrid search algorithms (RRF, linear fusion) with PostgreSQL, Elasticsearch, and custom RAG pipelines. Static scanner misidentified mathematical formulas as crypto operations, markdown code fences as command execution, and benign terminology as security risks. No malicious code or credential exfiltration present.

2
已掃描檔案
1,169
分析行數
2
發現項
claude
審計者
未發現安全問題

風險因素

⚡ 包含腳本 (1)
SKILL.md:41-110
📁 檔案系統存取 (1)
SKILL.md:1-569

審計版本 4

中風險

Jan 17, 2026, 09:23 AM

AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.

2
已掃描檔案
764
分析行數
2
發現項
claude
審計者
未發現安全問題

風險因素

🌐 網路存取 (5)
skill-report.json:6 SKILL.md:173 SKILL.md:566 SKILL.md:567 SKILL.md:568
⚙️ 外部命令 (9)
SKILL.md:22-26 SKILL.md:26-41 SKILL.md:41-110 SKILL.md:110-114 SKILL.md:114-246 SKILL.md:246-250 SKILL.md:250-397 SKILL.md:397-401 SKILL.md:401-547

偵測到的模式

Hardcoded URLWeak cryptographic algorithmSystem reconnaissanceRuby/shell backtick executionFetch API callCertificate/key files[HEURISTIC] DANGEROUS COMBINATION: Code execution + Network + Credential access

審計版本 3

中風險

Jan 17, 2026, 09:23 AM

AI analysis failed after multiple attempts - MANUAL REVIEW REQUIRED before publishing. This skill cannot be auto-published until reviewed by a human.

2
已掃描檔案
764
分析行數
2
發現項
claude
審計者
未發現安全問題

風險因素

🌐 網路存取 (5)
skill-report.json:6 SKILL.md:173 SKILL.md:566 SKILL.md:567 SKILL.md:568
⚙️ 外部命令 (9)
SKILL.md:22-26 SKILL.md:26-41 SKILL.md:41-110 SKILL.md:110-114 SKILL.md:114-246 SKILL.md:246-250 SKILL.md:250-397 SKILL.md:397-401 SKILL.md:401-547

偵測到的模式

Hardcoded URLWeak cryptographic algorithmSystem reconnaissanceRuby/shell backtick executionFetch API callCertificate/key files[HEURISTIC] DANGEROUS COMBINATION: Code execution + Network + Credential access

審計版本 2

低風險

Jan 4, 2026, 04:30 PM

Documentation-only skill with Python templates for hybrid search. Templates show database connections (PostgreSQL, Elasticsearch) which implies network access in user implementations. No credential access, file system writes, or command execution. Risk is limited to standard template patterns.

4
已掃描檔案
807
分析行數
1
發現項
claude
審計者
未發現安全問題

風險因素

🌐 網路存取 (2)
SKILL.md:115-246 SKILL.md:248-397

審計版本 1

低風險

Jan 4, 2026, 04:30 PM

Documentation-only skill with Python templates for hybrid search. Templates show database connections (PostgreSQL, Elasticsearch) which implies network access in user implementations. No credential access, file system writes, or command execution. Risk is limited to standard template patterns.

4
已掃描檔案
807
分析行數
1
發現項
claude
審計者
未發現安全問題

風險因素

🌐 網路存取 (2)
SKILL.md:115-246 SKILL.md:248-397
← 返回技能