blave-quant

Warn

Audited by Socket on Jul 6, 2026

2 alerts found:

AnomalySecurity
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill's stated purpose largely matches its market-data and trading capabilities, and there is no obvious malware or installer abuse. However, it asks for a large set of exchange credentials, enables real-money trading and transfers, and publisher documentation indicates exchange connections/data may be routed through and analyzed by Blave rather than staying strictly between the user and official exchange APIs. The CONFIRM safety rule helps, but the third-party credential/data routing and broad financial action surface keep overall risk at medium-high.

Confidence: 83%Severity: 68%
SecurityMEDIUM
references/marketplace.md
Audit Metadata
Analyzed At
Jul 6, 2026, 12:01 AM
Package URL
pkg:socket/skills-sh/Blave-TW%2Fblave-quant-skill%2Fblave-quant%2F@57b88462b26535dea6694bd1ee00230ef9d34e1c
Security Audit — socket — blave-quant