npm-updater

Pass

Audited by Socket on Feb 25, 2026

Checks

Malicious behaviorInjection, exfiltration, untrusted installs

Security concernsCredential exposure, tool/trust exploitation

Code obfuscationHidden or obfuscated code

Suspicious patternsReconnaissance, excessive autonomy, resource use

Audit Metadata

Analyzed At

Feb 25, 2026, 07:25 PM

Package URL

pkg:socket/skills-sh/verebelyin%2Fskills%2Fnpm-updater%2F@ff22184009a610c057a97cef4c8019b917bb940d