linkedin-scraper

Warn

Audited by Socket on Jul 2, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s LinkedIn-scraping purpose is coherent, and the Gooseworks CLI appears same-org and documented, but the skill reads raw local credentials and routes requests through intermediary proxy endpoints instead of the upstream provider’s documented direct API. The main risk is credential and data intermediation, not confirmed malware.

Confidence: 85%Severity: 61%
Audit Metadata
Analyzed At
Jul 2, 2026, 06:17 AM
Package URL
pkg:socket/skills-sh/athina-ai%2Fgoose-skills%2Flinkedin-scraper%2F@ebdfe1571c4857d11dd4f2e80eb1d7d1770e2ae94ea083420c1da23de46feebb
Security Audit — socket — linkedin-scraper