notepad-plus-plus

Pass

Audited by Socket on Feb 16, 2026

Checks

Malicious behaviorInjection, exfiltration, untrusted installs

Security concernsCredential exposure, tool/trust exploitation

Code obfuscationHidden or obfuscated code

Suspicious patternsReconnaissance, excessive autonomy, resource use

Audit Metadata

Analyzed At

Feb 16, 2026, 04:02 AM

Package URL

pkg:socket/skills-sh/g1joshi%2Fagent-skills%2Fnotepad-plus-plus%2F@1f5608af8ba99ee4a64e6d7fee41e7124cd97302