skills/ajbcoding/claude-skill-eval/moai-design-systems/Socket

moai-design-systems

Fail

Audited by Socket on Mar 1, 2026

1 alert found:

Malware

MalwareSKILL.md

HIGH

MalwareHIGH

SKILL.md

The design-system workflow described aligns with token-driven UI development, accessibility, and Figma MCP integration. There is prudent attention to data flows and credential handling, though placeholders for secrets and outside-tool invocations introduce realistic security considerations. The overall risk is moderate, with recommended mitigations including strict secret management, version pinning for external tools, integrity verifications, and secure CI/CD practices to minimize supply-chain risks.

Confidence: 95%Severity: 90%

Audit Metadata

Analyzed At

Mar 1, 2026, 01:09 AM

Package URL

pkg:socket/skills-sh/ajbcoding%2Fclaude-skill-eval%2Fmoai-design-systems%2F@b78dc52698fa248afd5c7783ab374315231107a7