Skip to content

chore(deps): update anthropics/skills digest to c30d329#671

Open
renovate[bot] wants to merge 2 commits into
mainfrom
renovate/anthropics-skills-digest
Open

chore(deps): update anthropics/skills digest to c30d329#671
renovate[bot] wants to merge 2 commits into
mainfrom
renovate/anthropics-skills-digest

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented Jun 8, 2026

This PR contains the following updates:

Package Update Change
anthropics/skills digest 6a5bb06c30d329

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot added the dependencies label Jun 8, 2026
@toolhive-release-app
Copy link
Copy Markdown
Contributor

toolhive-release-app Bot commented Jun 8, 2026
edited
Loading

🛡️ Skill Security Scan Results

❌ claude-api

  • Status: Failed
  • Findings: 643
  • Blocking: 14

Blocking issues:

  • [ATR_2026_00032] (HIGH) Pattern detected: instead of the deprecated (SKILL.md:323)
  • [ATR_2026_00021] (CRITICAL) Pattern detected: ANTHROPIC_API_KEY="your-api-key" (curl/managed-agents.md:8)
  • [ATR_2026_00084] (HIGH) Pattern detected: | Override API host | (shared/anthropic-cli.md:101)
  • [ATR_2026_00020] (HIGH) Pattern detected: You are a helpful assistant (shared/anthropic-cli.md:168)
  • [ATR_2026_00115] (CRITICAL) Pattern detected: env; (shared/claude-platform-on-aws.md:26)
  • [ATR_2026_00062] (CRITICAL) Pattern detected: SECRET (shared/claude-platform-on-aws.md:49)
  • [ATR_2026_00265] (HIGH) Pattern detected: disregard the previous instruction (shared/model-migration.md:821)
  • [ATR_2026_00020] (HIGH) Pattern detected: system prompt: (shared/model-migration.md:849)
  • [ATR_2026_00235] (HIGH) Pattern detected: prompt: (shared/model-migration.md:861)
  • [ATR_2026_00030] (CRITICAL) Pattern detected: role:"system" (shared/model-migration.md:881)
  • [ATR_2026_00030] (CRITICAL) Pattern detected: role: "system" (shared/prompt-caching.md:67)
  • [ATR_2026_00083] (HIGH) Pattern detected: new instruction (shared/prompt-caching.md:70)
  • [ATR_2026_00030] (CRITICAL) Pattern detected: role: "system" (shared/prompt-caching.md:79)
  • [ATR_2026_00090] (HIGH) Pattern detected: send a **`max_token (shared/prompt-caching.md:193)

Allowlisted (not blocking):

  • SOCIAL_ENG_ANTHROPIC_IMPERSONATION (Allowed: claude-api is packaged from anthropics/skills — the Anthropic branding is authentic, not impersonation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00140 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00140 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • PG_PII_CREDENTIAL_HARVESTING (Allowed: FP: matched prose 'Store MCP credential'; documentation, not credential exfiltration.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00001 (Allowed: FP: matched prose 'become a concern' in model-migration.md.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00140 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)

Summary: Scanned 1 skill(s), found 14 blocking issue(s).

⚠️ Action Required: Review the blocking findings. Add a justified entry to the skill's security.allowed_issues[] in its spec.yaml if the finding is a false positive.

@renovate
Copy link
Copy Markdown
Contributor Author

renovate Bot commented Jun 8, 2026

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants