crank
Warn
Audited by Socket on Feb 19, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS: The documented autonomous orchestration framework is coherent and potentially powerful for end-to-end epic management, but it presents meaningful security and governance concerns due to external integrations, high autonomy, and broad state mutations across trackers. Before deployment in a software supply chain, implement strict access controls, auditing, input validation, and human-in-the-loop safeguards to mitigate data leakage, unauthorized actions, and audit gaps.
Confidence: 59%Severity: 62%
Audit Metadata