skills/phrazzld/claude-config/agent-tools/Socket

agent-tools

Fail

Audited by Socket on Mar 18, 2026

1 alert found:

Malware

MalwareSKILL.md

HIGH

MalwareHIGH

SKILL.md

SUSPICIOUS: The skill is broadly aligned with its claimed purpose and uses same-org installer/API domains, so it is not clearly malicious. However, it carries meaningful risk from a pipe-to-shell installer, credential-bearing external CLI usage, social-media automation with real-world effects, and transitive installation of additional skills.

Confidence: 83%Severity: 68%

Audit Metadata

Analyzed At

Mar 18, 2026, 11:22 PM

Package URL

pkg:socket/skills-sh/phrazzld%2Fclaude-config%2Fagent-tools%2F@6f19f960fa76290de4e8c6ec6f9d291c6324c7dd