xai-grok

Fail

Audited by Socket on Mar 7, 2026

1 alert found:

Obfuscated File
Obfuscated FileHIGH
SKILL.md

The skill's footprint is coherent with its stated purpose: it acts as a client to an OpenAI-compatible API, using a standard Bearer API key and HTTPS endpoints. There are no obvious supply-chain or credential-forwarding risks, and no unintended data collection beyond legitimate API usage. The main security consideration is ensuring API keys are not logged or leaked and that endpoints are trusted. Overall, the risk posture is benign with minor credential-handling considerations.

Confidence: 98%
Audit Metadata
Analyzed At
Mar 7, 2026, 05:44 PM
Package URL
pkg:socket/skills-sh/alphaonedev%2Fopenclaw-graph%2Fxai-grok%2F@369d99d55edab7dfab83ed0ba6baffdb13021a3d
Security Audit — socket — xai-grok