Skills
skills/dangeles/claude/programming-pm/Socket

programming-pm

Fail

Audited by Socket on Mar 1, 2026

1 alert found:

Malware
MalwareHIGH
SKILL.md

The piece describes a sophisticated orchestration framework for multi-disciplinary software projects. It emphasizes governance, state management, and external tool integration rather than direct code execution. The primary security concerns are governance-related: tool trust, state/config integrity, drift and override abuse, and credential exposure via session artifacts. Overall, risk is medium due to broad surface area for misconfiguration or abuse of overrides, with no intrinsic malicious behavior observed.

Confidence: 95%Severity: 90%
Audit Metadata
Analyzed At
Mar 1, 2026, 06:49 PM
Package URL
pkg:socket/skills-sh/dangeles%2Fclaude%2Fprogramming-pm%2F@af85b68b6e76cf1127e086b2b411b6aed0569036