skills/qwibitai/nanoclaw/debug/Socket

debug

Fail

Audited by Socket on Mar 3, 2026

1 alert found:

Malware

MalwareSKILL.md

HIGH

MalwareHIGH

SKILL.md

The guide/documentation is coherent and non-malicious, serving a debugging purpose for containerized agents. Credential handling patterns are typical for development but require stronger safeguards (log sanitization, strict mount validation, and access controls) to prevent credential leakage. Overall risk is moderate with actionable mitigations to align it with secure best practices.

Confidence: 95%Severity: 90%

Audit Metadata

Analyzed At

Mar 3, 2026, 11:18 AM

Package URL

pkg:socket/skills-sh/qwibitai%2Fnanoclaw%2Fdebug%2F@921318bdbfd838bfd7d9e55aead4fbea11bf7033