find-email-by-name

Warn

Audited by Socket on Jul 2, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill's purpose matches its functionality, but it reads a local credential file and sends both credentials and lookup payloads to Gooseworks as an intermediary instead of directly to Hunter or Tomba. This is not fundamentally malicious, yet the proxy-based data flow and raw credential handling create medium security/privacy risk.

Confidence: 86%Severity: 64%
Audit Metadata
Analyzed At
Jul 2, 2026, 06:18 AM
Package URL
pkg:socket/skills-sh/athina-ai%2Fgoose-skills%2Ffind-email-by-name%2F@cf44570ed9f5c771b2d3cf8bfe8bc7201adedd87f4e24abe8f575a2943d698a3
Security Audit — socket — find-email-by-name