skills/aradotso/data-skills/harvard-art-museums-etl-analytics/Socket

harvard-art-museums-etl-analytics

Warn

Audited by Socket on May 24, 2026

1 alert found:

Anomaly

AnomalySKILL.md

LOW

AnomalyLOW

SKILL.md

SUSPICIOUS but not malicious. The skill's capabilities broadly match its ETL/dashboard purpose and its data flows target official Harvard API endpoints plus a user-specified database, but the install source is an unrelated personal GitHub repo rather than the stated publisher and dependencies are unpinned, creating meaningful supply-chain trust risk.

Confidence: 100%Severity: 60%

Audit Metadata

Analyzed At

May 24, 2026, 08:02 AM

Package URL

pkg:socket/skills-sh/Aradotso%2Fdata-skills%2Fharvard-art-museums-etl-analytics%2F@cccee5a0f8520d1be61360afe578f69c221b064a