skills/spartanlabsxyz/simmer-sdk/simmer-skill-builder/Socket

simmer-skill-builder

Warn

Audited by Socket on Mar 15, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

SUSPICIOUS: the skill is internally coherent for a trading-skill generator, but its footprint is high-risk because it creates autonomous financial agents, ingests untrusted external content into code generation, and instructs transitive skill publication through an external CLI. The main concern is dangerous capability and trust expansion rather than confirmed malware or credential theft.

Confidence: 90%Severity: 78%

Audit Metadata

Analyzed At

Mar 15, 2026, 06:42 PM

Package URL

pkg:socket/skills-sh/spartanlabsxyz%2Fsimmer-sdk%2Fsimmer-skill-builder%2F@61e6ae74d98b5c65fa4bd595c12db28395e58487