instagram-place-posts

Warn

Audited by Socket on Jun 13, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: The stated purpose matches Instagram location scraping, but the execution model is riskier than necessary because it asks the agent to eval shell generated by local Python scripts and to trust authenticated browser context without script review. No direct credential theft or third-party exfiltration is evident, but the opaque command chain and anti-detection guidance make this higher-risk than a normal documentation skill.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 13, 2026, 04:40 AM
Package URL
pkg:socket/skills-sh/browser-act%2Fskills%2Finstagram-place-posts%2F@38858bb708fce6ee35b6ebfec712c4d5712748d04a8317f22d0013f4b7e193fd
Security Audit — socket — instagram-place-posts