Skip to content

chore(deps): update anthropics/skills digest to 9d2f1ae#671

Open
renovate[bot] wants to merge 2 commits into
mainfrom
renovate/anthropics-skills-digest
Open

chore(deps): update anthropics/skills digest to 9d2f1ae#671
renovate[bot] wants to merge 2 commits into
mainfrom
renovate/anthropics-skills-digest

Conversation

@renovate

@renovate renovate Bot commented Jun 8, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Update Change
anthropics/skills digest 6a5bb069d2f1ae

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot added the dependencies label Jun 8, 2026
@toolhive-release-app

toolhive-release-app Bot commented Jun 8, 2026

Copy link
Copy Markdown
Contributor

🛡️ Skill Security Scan Results

❌ claude-api

  • Status: Failed
  • Findings: 988
  • Blocking: 20

Blocking issues:

  • [ATR_2026_00090] (HIGH) Pattern detected: copy the exact key (SKILL.md:36)
  • [ATR_2026_00113] (CRITICAL) Pattern detected: get a short-lived token with `ant auth print-credentials (SKILL.md:217)
  • [ATR_2026_00113] (CRITICAL) Pattern detected: Read shared/managed-agents-onboarding.md immediately** and follow its interview script: describe → configure the agent (propose, don't interrogate) → environment → session (same arc as the Console quickstart, auth deferred to the session step) — defaults and inline suggestions do the work, with a silent viability gate (job vs tools/credentials (SKILL.md:396)
  • [ATR_2026_00032] (HIGH) Pattern detected: instead of the deprecated (SKILL.md:543)
  • [ATR_2026_00021] (CRITICAL) Pattern detected: ANTHROPIC_API_KEY="your-api-key" (curl/managed-agents.md:8)
  • [ATR_2026_00084] (HIGH) Pattern detected: | Override API host | (shared/anthropic-cli.md:101)
  • [ATR_2026_00020] (HIGH) Pattern detected: You are a helpful assistant (shared/anthropic-cli.md:168)
  • [ATR_2026_00115] (CRITICAL) Pattern detected: env; (shared/claude-platform-on-aws.md:26)
  • [ATR_2026_00062] (CRITICAL) Pattern detected: SECRET (shared/claude-platform-on-aws.md:49)
  • [ATR_2026_00265] (HIGH) Pattern detected: disregard the previous instruction (shared/model-migration.md:834)
  • [ATR_2026_00020] (HIGH) Pattern detected: system prompt: (shared/model-migration.md:862)
  • [ATR_2026_00235] (HIGH) Pattern detected: prompt: (shared/model-migration.md:874)
  • [ATR_2026_00030] (CRITICAL) Pattern detected: role:"system" (shared/model-migration.md:894)
  • [ATR_2026_00088] (HIGH) Pattern detected: output is billed at normal (shared/model-migration.md:1104)
  • [ATR_2026_00030] (CRITICAL) Pattern detected: run (a deliverable, a progress update with specific numbers, a direct answer) (shared/model-migration.md:1248)
  • [ATR_2026_00030] (CRITICAL) Pattern detected: role: "system" (shared/prompt-caching.md:67)
  • [ATR_2026_00083] (HIGH) Pattern detected: new instruction (shared/prompt-caching.md:70)
  • [ATR_2026_00030] (CRITICAL) Pattern detected: role: "system" (shared/prompt-caching.md:79)
  • [ATR_2026_00090] (HIGH) Pattern detected: send a **`max_token (shared/prompt-caching.md:193)
  • [ATR_2026_00240] (HIGH) Pattern detected: execute anything (shared/tool-use-concepts.md:103)

Allowlisted (not blocking):

  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00140 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00140 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • PG_PII_CREDENTIAL_HARVESTING (Allowed: FP: matched prose 'Store MCP credential'; documentation, not credential exfiltration.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • PG_PII_CREDENTIAL_HARVESTING (Allowed: FP: matched prose 'Store MCP credential'; documentation, not credential exfiltration.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00001 (Allowed: FP: matched prose 'become a concern' in model-migration.md.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00064 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00140 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00213 (Allowed: FP: matched the literal phrase 'system prompt' in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • PG_PII_SSN_HARVESTING (Allowed: FP: matched prose fragments ('ask the user...', toggle thinking); rule is also misconfigured upstream (unknown category 'pii_exposure').)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00063 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00004 (Allowed: FP: matched {"role": " JSON message examples in API docs.)
  • ATR_2026_00051 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00066 (Allowed: FP: matched code-fence language tokens (python/bash/sh) in docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00111 (Allowed: FP: matched file references and plain words (e.g. shared/models.md, id, set).)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • PG_PII_CREDENTIAL_HARVESTING (Allowed: FP: matched prose 'Store MCP credential'; documentation, not credential exfiltration.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00091 (Allowed: FP: substring/keyword match on upstream documentation prose; no executable threat.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00012 (Allowed: FP: matched 'system', $ANTHROPIC_API_KEY and getenv() in API documentation examples.)
  • ATR_2026_00010 (Allowed: FP: matched word fragments in prose (e.g. 'onc'/'balanc'/'differenc'/'intelligenc') and effort/thinking parameter docs.)
  • ATR_2026_00040 (Allowed: FP: matched the keyword 'EXEC'/exec in documentation.)

Summary: Scanned 1 skill(s), found 20 blocking issue(s).

⚠️ Action Required: Review the blocking findings. Add a justified entry to the skill's security.allowed_issues[] in its spec.yaml if the finding is a false positive.

@renovate renovate Bot changed the title chore(deps): update anthropics/skills digest to c30d329 chore(deps): update anthropics/skills digest to 9d2f1ae Jul 3, 2026
@renovate renovate Bot force-pushed the renovate/anthropics-skills-digest branch from 230bff0 to cd7a8a9 Compare July 3, 2026 10:12
@renovate

renovate Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor Author

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants