skills/constructive-io/constructive-skills/pgvector-rag/Socket

pgvector-rag

Fail

Audited by Socket on Mar 4, 2026

1 alert found:

Malware

Malwarereferences/ollama.md

HIGH

MalwareHIGH

references/ollama.md

BENIGN. The code fragment implements a focused, well-structured client library for interacting with a locally hosted Ollama server, covering embeddings, generation (including streaming), chat, and model discovery. No evident credential harvesting or data leakage is present in the code path. Operational risks relate to deployment practices (secure host exposure, trusted model sources) rather than code-level vulnerabilities.

Confidence: 95%Severity: 90%

Audit Metadata

Analyzed At

Mar 4, 2026, 10:04 AM

Package URL

pkg:socket/skills-sh/constructive-io%2Fconstructive-skills%2Fpgvector-rag%2F@5e7583439a09c5d8ca510416c43176c36ee5e226