skills/pablo-mano/obsidian-cli-skill/obsidian-cli/Socket

obsidian-cli

Fail

Audited by Socket on Mar 7, 2026

1 alert found:

Obfuscated File

Obfuscated FileSKILL.md

HIGH

Obfuscated FileHIGH

SKILL.md

The Obsidian CLI skill is coherent with its stated purpose: it enables direct vault operations via a legitimate, official CLI and IPC mechanism, focusing on local data access and manipulation. The footprint is proportionate, with no evident credential forwarding, external data exfiltration, or unsanctioned binary downloads. The main security considerations are data-access risks to potentially sensitive vault contents and ensuring user consent/visibility for vault modifications. Overall, the risk posture is low to moderate (benign to suspicious in a narrow sense) with no strong indicators of malicious activity.

Confidence: 98%

Audit Metadata

Analyzed At

Mar 7, 2026, 09:27 AM

Package URL

pkg:socket/skills-sh/pablo-mano%2Fobsidian-cli-skill%2Fobsidian-cli%2F@c96107c01b6c708df97a01e9b6ce74b1da3a97a9