upskill
Audited by Socket on Jul 3, 2026
2 alerts found:
Anomalyx2SUSPICIOUS. The footprint mostly matches the stated purpose of session-to-skill distillation, but the recommended curl|bash installer, persistent hook installation, and broad session-context capture create meaningful security risk. I see no confirmed malware or overt credential-harvesting behavior in the provided skill text, but the install trust and data-retention scope are stronger than a simple routing wrapper.
No explicit malicious payload is visible in this wrapper code, but it is a high-sensitivity supply-chain installer that performs unauthenticated remote code execution (curl of an upstream install.sh piped directly into bash) and can also execute additional externally fetched logic via npx when GLOBAL=1. With UPSKILL_REF being user-controlled and no integrity verification/pinning enforced here, the key risk is upstream/ref/network compromise leading to arbitrary code execution on the installing machine.