user-acquisition

Pass

Audited by Socket on Mar 5, 2026

Checks

Malicious behaviorInjection, exfiltration, untrusted installs

Security concernsCredential exposure, tool/trust exploitation

Code obfuscationHidden or obfuscated code

Suspicious patternsReconnaissance, excessive autonomy, resource use

Audit Metadata

Analyzed At

Mar 5, 2026, 11:41 AM

Package URL

pkg:socket/skills-sh/vivy-yi%2Fxiaohongshu-skills%2Fuser-acquisition%2F@5e29ad6d8e4c240ae6959e257c1529badd02eb10