blink-fetch

Warn

Audited by Socket on Jun 16, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill is honest about using Blink as a proxy, but its real data flow sends arbitrary request data and potentially sensitive auth headers through a third-party intermediary instead of directly to target services. Install provenance appears same-org and not overtly malicious, yet the proxy-based credential and content forwarding makes this a medium-high security risk for a general-purpose fetch skill.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 16, 2026, 09:20 PM
Package URL
pkg:socket/skills-sh/blink-new%2Fopenclaw%2Fblink-fetch%2F@cc0477be3bba0b863cfc5312cad19056cb8510922de3aa37174033d7eb0fcc70
Security Audit — socket — blink-fetch