website-screenshot-notte
Warn
Audited by Socket on Jul 2, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS: the core purpose is coherent, and the CLI install appears to come from an official source, but the skill routes screenshot operations and credentials through a Gooseworks proxy, reads raw local credential files, and allows arbitrary URL navigation. This is not clearly malicious, yet the proxy-centric data flow and credential handling are broader than a simple website screenshot skill needs.
Confidence: 84%Severity: 61%
Audit Metadata