Skills
skills/aaaaqwq/agi-super-team/dropbox-automation/Socket

dropbox-automation

Warn

Audited by Socket on Mar 13, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill’s Dropbox capabilities are largely aligned with its stated purpose and use an official same-org Rube/Composio endpoint, so it is not a clear malware or installer-based supply-chain lure. However, it routes Dropbox access and OAuth through a third-party managed gateway, and the documentation minimizes that trust boundary by claiming no API keys/auth setup are needed. Main risk is third-party credential/data mediation and mildly misleading setup claims, not overt malicious behavior.

Confidence: 87%Severity: 56%
Audit Metadata
Analyzed At
Mar 13, 2026, 07:01 AM
Package URL
pkg:socket/skills-sh/aAAaqwq%2FAGI-Super-Team%2Fdropbox-automation%2F@c17dcd083e4907c07f51e596b39c77f7fec70f8f