eightctl

Warn

Audited by Socket on Mar 15, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill is a thin installer pointer with no native functionality, creating a transitive trust chain to external content whose provenance is only partially verified. There is no direct credential theft or exfiltration in the provided skill text, but the unclear publisher relationship and install-only behavior make it medium risk.

Confidence: 84%Severity: 58%
Audit Metadata
Analyzed At
Mar 15, 2026, 07:48 PM
Package URL
pkg:socket/skills-sh/alphaonedev%2Fopenclaw-graph%2Feightctl%2F@591210110c379fa958959beb57a52ccfd97948f5
Security Audit — socket — eightctl