Skills
skills/yzddmr6/repo-analyzer/repo-analyzer/Socket

repo-analyzer

Warn

Audited by Socket on Apr 7, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

该技能总体目的与能力基本一致:围绕仓库研究、外部调研和报告生成展开,未见明显凭据窃取或恶意外传。主要风险来自对任意第三方仓库和网页内容的未固定拉取,以及在具备写文件/多代理能力时处理不受信外部内容,属于可疑但非恶意的中高安全风险。

Confidence: 85%Severity: 63%
Audit Metadata
Analyzed At
Apr 7, 2026, 03:13 PM
Package URL
pkg:socket/skills-sh/yzddmr6%2Frepo-analyzer%2Frepo-analyzer%2F@12c3c8ccf836cf68382168a299e602f4506598ff