Skills
skills/sickn33/antigravity-awesome-skills/agent-manager-skill/Socket

agent-manager-skill

Fail

Audited by Socket on Feb 27, 2026

1 alert found:

Obfuscated File
Obfuscated FileHIGH
SKILL.md

This package is a local agent orchestration tool that deliberately spawns and controls CLI agents inside tmux. The functionality itself is not intrinsically malicious, but it creates a high-value attack surface: arbitrary command execution via agent configs or piped input. There are no direct signs of built-in malware or obfuscation in the provided snippet. Primary security concern is misuse (untrusted configs, automated edits, or compromised repository) leading to host compromise or data exfiltration. Recommend treating agent definitions as sensitive, running the manager in a confined, least-privilege environment, and adding validation/whitelisting of agent commands before execution.

Confidence: 98%
Audit Metadata
Analyzed At
Feb 27, 2026, 05:05 PM
Package URL
pkg:socket/skills-sh/sickn33%2Fantigravity-awesome-skills%2Fagent-manager-skill%2F@f58cbb3c140e9d53b34dd30d51e30ae8a7dd9fbd