skills/harlan-zw/vue-ecosystem-skills/unhead-vue-skilld/Socket

unhead-vue-skilld

Warn

Audited by Socket on Mar 14, 2026

1 alert found:

Anomaly

Anomalyreferences/issues/issue-320.md

LOW

AnomalyLOW

references/issues/issue-320.md

Not inherently malicious. The main security concern is trusting and loading external scripts. To reduce risk, apply SRI, CSP, origin validation, and dependency governance when using dynamic external script loading patterns like useScript with idle triggers.

Confidence: 75%Severity: 50%

Audit Metadata

Analyzed At

Mar 14, 2026, 03:37 PM

Package URL

pkg:socket/skills-sh/harlan-zw%2Fvue-ecosystem-skills%2Funhead-vue-skilld%2F@ebdfae486fa69140f107a7fed86df061283bf83c