skills/base/base-skills/adding-builder-codes/Socket

adding-builder-codes

Fail

Audited by Socket on Mar 9, 2026

1 alert found:

Obfuscated File

Obfuscated FileSKILL.md

HIGH

Obfuscated FileHIGH

SKILL.md

The skill's footprint is coherent with its stated purpose of integrating Base Builder Codes for transaction attribution. It relies on standard, verifiable dependencies from official registries, does not request or handle sensitive credentials, and uses well-defined client-side integration patterns to modify transaction calldata for attribution. Data flows are limited to appending a known suffix to transactions and verifying attribution, with no evident data exfiltration or malicious behavior. Overall, the evaluation deems this skill BENIGN with low-security risk.

Confidence: 98%

Audit Metadata

Analyzed At

Mar 9, 2026, 04:44 PM

Package URL

pkg:socket/skills-sh/base%2Fbase-skills%2Fadding-builder-codes%2F@b543d1a1a5fc0fb673d172c53adc7c3354ed3dd3