Skills
skills/bagelhole/devops-security-agent-skills/dast-scanning/Socket

dast-scanning

Fail

Audited by Socket on Mar 18, 2026

1 alert found:

Malware
MalwareHIGH
SKILL.md

BENIGN for purpose-capability alignment and install provenance, but HIGH RISK operationally because it equips an AI agent to perform offensive web security scanning, including authenticated scans, against network targets. No clear malware or credential-harvesting behavior is present; the main concerns are offensive capability, mutable image tags, and credential exposure to security tools.

Confidence: 90%Severity: 76%
Audit Metadata
Analyzed At
Mar 18, 2026, 10:16 PM
Package URL
pkg:socket/skills-sh/bagelhole%2Fdevops-security-agent-skills%2Fdast-scanning%2F@05c88bdbdb86149dcaadb1293bfccad02f410edd