submit-credit-application

Warn

Audited by Socket on Jun 29, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: 该技能总体与授信申请辅助目的相符,未见明显外部投递、凭证转发或恶意下载执行;但它处理高度敏感金融资料、可触发真实案件创建,并依赖未披露实现的本地校验脚本。最大问题是能力边界表述不一致:声称不直接修改客户数据,却实际包含案件创建这一业务写操作。

Confidence: 84%Severity: 57%
Audit Metadata
Analyzed At
Jun 29, 2026, 06:41 AM
Package URL
pkg:socket/skills-sh/aliyun%2Fqwen-dianjin%2Fsubmit-credit-application%2F@40f689d2a8e5c93b8fb03bd05e791fb6b4718947bfc54b0579fede89d9bbb7ef
Security Audit — socket — submit-credit-application