skills/varnan-tech/opendirectory/cold-email-verifier/Socket

cold-email-verifier

Warn

Audited by Socket on Apr 20, 2026

1 alert found:

Anomaly

AnomalySKILL.md

LOW

AnomalyLOW

SKILL.md

SUSPICIOUS. The core behavior matches the stated purpose, but the skill forwards lead data and an API key to a third-party verifier, supports arbitrary self-hosted verification endpoints over plain HTTP, and relies on underspecified dependencies and outdated Clearbit guidance. This is not confirmed malware, but it poses meaningful privacy, transport-security, and operational risk for an AI agent skill.

Confidence: 89%Severity: 66%

Audit Metadata

Analyzed At

Apr 20, 2026, 07:34 PM

Package URL

pkg:socket/skills-sh/Varnan-Tech%2Fopendirectory%2Fcold-email-verifier%2F@8ea34ee66596849b80af12ec654d481f3b9bf2c8