net-ops

Warn

Audited by Socket on Jun 21, 2026

1 alert found:

Anomaly
AnomalyLOW
scripts/ssh-bootstrap.sh

The provided fragment is best characterized as a dual-use SSH bootstrap/connectivity utility: it legitimately probes remote OS and runs minimal smoke tests, but it also enables automated remote command execution on an arbitrary user-supplied target and weakens MITM protections (accept-new). It handles credentials via SSHPASS environment variable (increasing operational exposure). There is no direct evidence in this snippet of malware, persistence installation, or data exfiltration; however, the included persistence-oriented next-step hints and cross-platform PowerShell invocation increase the overall security risk in a supply-chain context.

Confidence: 70%Severity: 52%
Audit Metadata
Analyzed At
Jun 21, 2026, 07:50 PM
Package URL
pkg:socket/skills-sh/0xdarkmatter%2Fclaude-mods%2Fnet-ops%2F@d3c33d3c0d0ad4c574336a2475e849fd9f9a3b8d155484cfc87866865e9aba1c
Security Audit — socket — net-ops