amazon-documentdb

Warn

Audited by Socket on Jun 19, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s capabilities broadly match its AWS DocumentDB purpose, and most network/data flows go to official AWS services. The main risk is scope and trust: it is an executor with real cloud impact and it instructs use of AWSlabs GitHub tools that may receive database access details outside official package-managed distribution. No strong evidence of malware, covert exfiltration, or deceptive behavior was found.

Confidence: 88%Severity: 58%
Audit Metadata
Analyzed At
Jun 19, 2026, 11:17 AM
Package URL
pkg:socket/skills-sh/aws%2Fagent-toolkit-for-aws%2Famazon-documentdb%2F@adc5d5ed26612e8c7df4c68649e20033bea632bec6d9c19dcb6dcee8eaa1bbfa
Security Audit — socket — amazon-documentdb