skills/ntcoding/claude-skillz/switch-persona/Socket

switch-persona

Fail

Audited by Socket on Feb 19, 2026

1 alert found:

Obfuscated File

Obfuscated FileSKILL.md

HIGH

Obfuscated FileHIGH

SKILL.md

The feature achieves rapid persona switching but implements a dangerous trust model: reading arbitrary user files and fully discarding prior system instructions grants persona files excessive authority and creates a high risk of instruction injection, data exfiltration, and other malicious behaviors. Without strong mitigations (immutable safety guards, trusted persona signing, capability limits, confirmation, and auditing), this design should be considered a significant security risk and revised before deployment.

Confidence: 98%

Audit Metadata

Analyzed At

Feb 19, 2026, 10:48 AM

Package URL

pkg:socket/skills-sh/ntcoding%2Fclaude-skillz%2Fswitch-persona%2F@046b9de11b9cfdf464f7a9c2bc91f9dc2616a3ba