balance
Warn
Audited by Snyk on Feb 24, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill's runtime command "npx fibx@latest balance" fetches and executes remote package code from the npm registry (i.e., the external package reference npx fibx@latest), so it is a required runtime dependency that executes remote code.
Audit Metadata