skills/yaklang/hack-skills/type-juggling/Socket

type-juggling

Warn

Audited by Socket on Apr 9, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

SUSPICIOUS: internally coherent and not a credential-stealing or supply-chain skill, but it equips an AI agent with offensive vulnerability-exploitation guidance for PHP auth and signature bypasses. Main risk is exploit-enablement, not malware or exfiltration.

Confidence: 92%Severity: 72%

Audit Metadata

Analyzed At

Apr 9, 2026, 04:29 AM

Package URL

pkg:socket/skills-sh/yaklang%2Fhack-skills%2Ftype-juggling%2F@7799662ad806bb8d6a4179ec38d97680771bd063