ecommerce-product-detail
Warn
Audited by Socket on Jun 13, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS. The stated purpose matches product-page scraping, and the browser-act dependency appears officially sourced, but the skill still expands execution trust through eval of Python-generated shell, uses a cross-skill dependency, and processes untrusted web content with bash/browser privileges. Overall this is purpose-aligned but medium-risk automation rather than clearly malicious.
Confidence: 100%Severity: 60%
Audit Metadata