skills/jeremylongshore/claude-code-plugins-plus/checking-owasp-compliance/Socket

checking-owasp-compliance

Warn

Audited by Socket on Apr 4, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

This skill is purpose-aligned as a security auditing tool, but it still poses high risk because it equips an AI agent with broad security-scanning shell capabilities and unspecified plugin provenance. No direct credential theft or exfiltration is evident, so it is better classified as high-risk/suspicious rather than malicious.

Confidence: 86%Severity: 72%

Audit Metadata

Analyzed At

Apr 4, 2026, 08:03 PM

Package URL

pkg:socket/skills-sh/jeremylongshore%2Fclaude-code-plugins-plus%2Fchecking-owasp-compliance%2F@c3e79bf076543cc3b8921b705f1e1f0d7ac2f483