Skills
skills/charpup/skill-security-auditor/obfuscation_test/Snyk

obfuscation_test

Fail

Audited by Snyk on Feb 26, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E006: Malicious code pattern detected in skill scripts.

  • Malicious code pattern detected (high risk: 1.00). Contains clear obfuscation (base64, string concatenation, dynamic eval/exec) and a decoded payload that executes "import os; os.system('rm -rf /')" — deliberate destructive remote code execution/system-compromise behavior.
Audit Metadata
Risk Level
CRITICAL
Analyzed
Feb 26, 2026, 03:18 PM