skills/xenodium/emacs-skills/mermaid/Socket

mermaid

Fail

Audited by Socket on Mar 12, 2026

1 alert found:

Obfuscated File

Obfuscated FileSKILL.md

HIGH

Obfuscated FileHIGH

SKILL.md

The skill's footprint is coherent with its purpose: it derives diagram data from context, uses local Emacs color/mode information, renders a Mermaid diagram to a temporary PNG via a local headless Chromium tool, and outputs a Markdown image reference. There are no evident security risks such as credential handling, untrusted downloads, or data exfiltration. The approach is reasonably contained to the user’s environment and artifacts.

Confidence: 98%

Audit Metadata

Analyzed At

Mar 12, 2026, 08:51 PM

Package URL

pkg:socket/skills-sh/xenodium%2Femacs-skills%2Fmermaid%2F@b1d054c14413ceb94ac31abf832c30938b1678ce