skills/eachlabs/skills/portrait-enhancement/Socket

portrait-enhancement

Warn

Audited by Socket on Apr 1, 2026

1 alert found:

Anomaly

AnomalySKILL.md

LOW

AnomalyLOW

SKILL.md

SUSPICIOUS. The skill’s capabilities fit its stated portrait-enhancement purpose and it does not install or execute external code, but it routes API keys and portrait data to an endpoint that was not clearly verified in official Eachlabs documentation. This is a moderate trust and data-flow concern, not confirmed malware.

Confidence: 84%Severity: 52%

Audit Metadata

Analyzed At

Apr 1, 2026, 05:35 PM

Package URL

pkg:socket/skills-sh/eachlabs%2Fskills%2Fportrait-enhancement%2F@2aa78efcfe0a23a47aae4f8313c2bc09c390bf57