portless-ops
Warn
Audited by Socket on Jun 16, 2026
1 alert found:
AnomalyAnomalyreferences/windows-specifics.md
LOWAnomalyLOW
references/windows-specifics.md
No direct malware is evidenced in the provided fragment because it contains only Windows setup/troubleshooting instructions, not executable logic. However, the described operations—system trust store CA installation, system hosts file modification, and SYSTEM-level Task Scheduler persistence—are high-impact capabilities commonly associated with TLS-intercepting proxy tools. If the underlying package were compromised, these features could materially increase attack impact. Review should focus on the actual portless implementation for strict limitations (no exfiltration, minimal persistence, transparent behavior) and on supply-chain integrity controls.
Confidence: 100%Severity: 60%
Audit Metadata