skills/kortix-ai/kortix-registry/kortix-system/Socket

kortix-system

Warn

Audited by Socket on Mar 3, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

The fragment provides a solid architectural reference for a self-contained Kortix sandbox with centralized secret/env management, deployment, and semantic tooling. It does not depict malicious code, but several design choices introduce meaningful security considerations (local auth bypass, secret-management exposure, internal proxies). Treat as high-risk design decisions requiring rigorous access control, auditing, and network isolation in production. Recommend tightening authentication for internal APIs, explicit least-privilege secrets access, and comprehensive logging/auditing for all secret-related actions.

Confidence: 75%Severity: 75%

Audit Metadata

Analyzed At

Mar 3, 2026, 08:37 AM

Package URL

pkg:socket/skills-sh/kortix-ai%2Fkortix-registry%2Fkortix-system%2F@8f43fb805786b35b5d2c5ce5b01780b7dc6c8a48