ecommerce-listing

Warn

Audited by Socket on Jun 13, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the stated purpose is coherent for e-commerce extraction, and data flow is mostly limited to browser-visible public pages plus a local memory file. The main concerns are the eval-of-script-output execution model, reliance on a separate tool/skill, and the combination of arbitrary web-page processing with command-capable tooling; no clear credential harvesting or malicious exfiltration is shown.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 13, 2026, 04:39 AM
Package URL
pkg:socket/skills-sh/browser-act%2Fskills%2Fecommerce-listing%2F@1c4c1ae3e3f2d0f2899b28892a6d636779a36e88b17ee9b5b8538693b91ee072
Security Audit — socket — ecommerce-listing