opik
Warn
Audited by Socket on Jun 17, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS. The Opik functionality itself is coherent and mostly uses official Comet/PyPI/GitHub sources, but the skill is published from a third-party wrapper repo and explicitly installs itself through a transitive skill chain despite evidence of an official first-party Comet skill path. Main risk is trust/provenance of the wrapper, not malicious behavior in the Opik setup flow.
Confidence: 100%Severity: 60%
Audit Metadata