📊

審計歷史

startup-financial-modeling - 2 審計

審計版本 2

最新安全

Feb 10, 2026, 09:04 AM

Documentation-only skill containing financial modeling formulas and templates. All static findings are false positives: markdown code blocks with financial formulas were misidentified as code execution, and no cryptographic or reconnaissance patterns exist.

已掃描檔案

495

分析行數

發現項

claude

審計者

中風險問題 (1)

SKILL.md:24-27 SKILL.md:78-81 SKILL.md:217-220 SKILL.md:228-234 SKILL.md:238-244 SKILL.md:312-316 SKILL.md:334-338 SKILL.md:379-382 SKILL.md:389-399 SKILL.md:468-470 SKILL.md:476-478 SKILL.md:494

External Commands - False Positive

Markdown code blocks containing financial formulas were misidentified as Ruby/shell backtick execution. Examples include MRR/ARR calculations and runway formulas displayed in code fences for documentation.

低風險問題 (2)

SKILL.md:3 SKILL.md:13 SKILL.md:56-57 SKILL.md:300

Weak Cryptographic Algorithm - False Positive

Static scanner incorrectly flagged text as weak cryptographic algorithms. No cryptographic code or MD5/SHA references exist in this financial documentation file.

SKILL.md:231 SKILL.md:430

System Reconnaissance - False Positive

References to 'Revenue ≠ cash' and 'payment terms' were misidentified as system reconnaissance. These are legitimate cash flow timing concepts in financial modeling.

審計版本 1

安全

Feb 9, 2026, 09:03 AM

This skill is safe to publish. It contains only markdown documentation about financial modeling for startups. The static scanner detected false positives - patterns like backticks and section headers were misinterpreted as code execution, and text containing words like 'cryptographic' or 'high' was flagged as weak crypto (both incorrect). This is pure educational content with no executable code.

已掃描檔案

495

分析行數

發現項

claude

審計者

未發現安全問題

← 返回技能