skills/htlin222/dotfiles/zettel/Socket

zettel

Fail

Audited by Socket on Feb 23, 2026

1 alert found:

Obfuscated File

Obfuscated FileSKILL.md

HIGH

Obfuscated FileHIGH

SKILL.md

No evidence of malware or obfuscated malicious code in the described tool. The primary risks are operational/privacy: (1) unconditional overwriting of source files risks data loss; (2) processing and persisting clinical notes (PHI) without anonymization or access controls risks privacy and compliance exposure; (3) aggressive automatic abbreviation may change clinical meaning and create patient-safety issues. Recommend adding explicit user confirmation, dry-run/backup defaults, PHI handling safeguards, and minimal privileges for file writes. If those controls are implemented, the tool is acceptable for local use; otherwise treat as moderate-risk for production clinical data.

Confidence: 98%

Audit Metadata

Analyzed At

Feb 23, 2026, 03:33 AM

Package URL

pkg:socket/skills-sh/htlin222%2Fdotfiles%2Fzettel%2F@d33f11f067541d15c586c531bd8189b2cf387e9d