Skills
skills/aaaaqwq/agi-super-team/bankr-signals/Socket

bankr-signals

Fail

Audited by Socket on Mar 13, 2026

1 alert found:

Malware
MalwareHIGH
SKILL.md

SUSPICIOUS: the skill is broadly aligned with a crypto signal platform, but it carries elevated risk because it forwards a high-value Bankr agent key to external signing APIs, encourages recurring remote-instruction fetches via heartbeat, and supports autonomous trading-adjacent actions. No confirmed malware or obvious credential-harvesting proxy was found, but the financial-action scope and indirect prompt-injection path make it higher risk than a typical API integration.

Confidence: 86%Severity: 72%
Audit Metadata
Analyzed At
Mar 13, 2026, 07:00 AM
Package URL
pkg:socket/skills-sh/aAAaqwq%2FAGI-Super-Team%2Fbankr-signals%2F@49c865c9fbc45064ea36dd7037cbff477bec39a7