enrichment-nyne

Warn

Audited by Socket on Jul 2, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill’s purpose and capabilities are coherent, but it routes all enrichment traffic through Gooseworks proxy endpoints instead of a direct Nyne API, reads a local credential file directly, and supports arbitrary callback URLs. This looks more like a managed gateway skill than outright malware, but the intermediary data flow and raw credential handling create medium risk.

Confidence: 86%Severity: 63%
Audit Metadata
Analyzed At
Jul 2, 2026, 06:18 AM
Package URL
pkg:socket/skills-sh/athina-ai%2Fgoose-skills%2Fenrichment-nyne%2F@34187c8879f2642d49e8095a26e5156ab2891f56875f158cf7f8f2390c268ca3
Security Audit — socket — enrichment-nyne