skills/aradotso/security-skills/security-compliance-skills-suite-claude/Snyk

security-compliance-skills-suite-claude

Fail

Audited by Snyk on May 29, 2026

Risk Level: CRITICAL

Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

Suspicious download URL detected (high risk: 0.80). Two of the links (ara.so and github.com/gitleaks/gitleaks) are likely legitimate, but the GitHub repo from an unknown/suspicious username (sparkfinderoven/r01-hesreallyhim-awesome-claude-code-security.git) is a potential malware distribution vector—untrusted GitHub repos that instruct cloning/execution should be treated as high risk until reviewed.

MEDIUM W021: Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

Hidden Unicode characters detected (1 type(s) found)

Issues (2)

E005

CRITICAL

Suspicious download URL detected in skill instructions.

W021

MEDIUM

Hidden or invisible Unicode characters detected (potential obfuscation or prompt injection).

Audit Metadata

Risk Level

CRITICAL

Analyzed

May 29, 2026, 05:16 PM

Issues

2

Security Audit — snyk — security-compliance-skills-suite-claude