skills/kevinaimonster/skill-hub/prd-writer/Socket

prd-writer

Warn

Audited by Socket on Apr 1, 2026

1 alert found:

Anomaly

AnomalySKILL.md

LOW

AnomalyLOW

SKILL.md

该技能本体是文档写作助手，能力、数据流和权限需求与PRD用途基本一致，未见凭证收集、网络代理、文件窃取或隐藏执行行为，整体偏良性。主要风险是内置了一条跨技能安装推荐：它把信任扩展到一个未被现有证据充分验证的外部 skill 仓库，属于供应链/传递安装风险，因此结论为 SUSPICIOUS 而非恶意。

Confidence: 94%Severity: 52%

Audit Metadata

Analyzed At

Apr 1, 2026, 03:44 PM

Package URL

pkg:socket/skills-sh/kevinaimonster%2Fskill-hub%2Fprd-writer%2F@45c178754180646facfa4ca79540297b4600d52c