ecommerce-product-detail

Warn

Audited by Socket on Jun 13, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The stated purpose matches product-page scraping, and the browser-act dependency appears officially sourced, but the skill still expands execution trust through eval of Python-generated shell, uses a cross-skill dependency, and processes untrusted web content with bash/browser privileges. Overall this is purpose-aligned but medium-risk automation rather than clearly malicious.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 13, 2026, 04:39 AM
Package URL
pkg:socket/skills-sh/browser-act%2Fskills%2Fecommerce-product-detail%2F@662eaf7194dc2127c0553cdf2cfa646cec4afd42ede309bf6b1e3f06e265efe9
Security Audit — socket — ecommerce-product-detail