Skills
skills/ariadoss/superskills/superskills-upgrade/Socket

superskills-upgrade

Warn

Audited by Socket on Apr 28, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill is purpose-aligned, but upgrading by pulling remote code and immediately rerunning `./setup` creates meaningful supply-chain risk. The lack of origin verification increases concern, though there is no clear credential theft, stealth, or unrelated capability expansion.

Confidence: 88%Severity: 56%
Audit Metadata
Analyzed At
Apr 28, 2026, 05:51 AM
Package URL
pkg:socket/skills-sh/ariadoss%2Fsuperskills%2Fsuperskills-upgrade%2F@ba18613aec47d7f0e756f050c38422fde53a2b38