god-tibo-imagen

Fail

Audited by Snyk on Jun 17, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.75). These point to small/unknown GitHub repos and an npm package that explicitly reuses your local ~/.codex/auth.json (granting access to sensitive tokens) and, as an untrusted npm/GitHub-distributed CLI/library, could execute arbitrary code or exfiltrate credentials—so treat as high risk.

Issues (1)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 17, 2026, 07:06 AM
Issues
1
Security Audit — snyk — god-tibo-imagen