skills/pixel-process-ug/superkit-agents/autonomous-loop/Socket

autonomous-loop

Warn

Audited by Socket on Apr 2, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

SUSPICIOUS: the core loop is coherent for autonomous software development, but it is high-impact by design: autonomous code/test/commit actions, large-scale subagent delegation, and reliance on multiple unspecified external skills/protocols create meaningful security risk. No direct malware or exfiltration is evident in this skill alone, but the transitive trust and autonomy make it unsafe to treat as low risk.

Confidence: 87%Severity: 74%

Audit Metadata

Analyzed At

Apr 2, 2026, 12:43 AM

Package URL

pkg:socket/skills-sh/Pixel-Process-UG%2Fsuperkit-agents%2Fautonomous-loop%2F@da325090ee292a38b6c193a49aa25aac66157122