summon

Warn

Audited by Socket on Jul 4, 2026

1 alert found:

Anomaly
AnomalyLOW
bin/summon.cmd

This batch file is a thin launcher that executes a local Python script from a user-specific Claude “skills/summon” directory and forwards all caller-provided arguments. While it does not itself show exfiltration or credential theft, the comment’s claim about cross-account Code-tab session pulling is a strong privacy-invasive indicator, and the wrapper provides no integrity checks before executing local, potentially modifiable code. Risk hinges on the unseen summon.py behavior (especially any local session reading and any network transmission).

Confidence: 52%Severity: 65%
Audit Metadata
Analyzed At
Jul 4, 2026, 07:01 PM
Package URL
pkg:socket/skills-sh/0xdarkmatter%2Fclaude-mods%2Fsummon%2F@06d1a7e5196a4a5fba2f9307070f2372245b735f90bcacc8d3cf6b5df13634b8
Security Audit — socket — summon