portless-ops

Warn

Audited by Socket on Jun 16, 2026

1 alert found:

Anomaly
AnomalyLOW
references/windows-specifics.md

No direct malware is evidenced in the provided fragment because it contains only Windows setup/troubleshooting instructions, not executable logic. However, the described operations—system trust store CA installation, system hosts file modification, and SYSTEM-level Task Scheduler persistence—are high-impact capabilities commonly associated with TLS-intercepting proxy tools. If the underlying package were compromised, these features could materially increase attack impact. Review should focus on the actual portless implementation for strict limitations (no exfiltration, minimal persistence, transparent behavior) and on supply-chain integrity controls.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 16, 2026, 02:10 AM
Package URL
pkg:socket/skills-sh/0xDarkMatter%2Fclaude-mods%2Fportless-ops%2F@e3e5a7c21a525cd5e6d93ccf06b37347fff5cc851c89788322cbc19a14b6fd9b
Security Audit — socket — portless-ops