github-screenshots

Warn

Audited by Socket on Jun 25, 2026

1 alert found:

Anomaly
AnomalyLOW
scripts/capture.sh

This module is primarily a functional screenshot automation tool with moderate security risk due to (1) intentional execution of arbitrary JavaScript in the visited page (--eval -> page.evaluate), (2) navigation to arbitrary URLs, (3) writing screenshots to an attacker-influenced filesystem path (--out) without a directory allowlist, and (4) supply-chain/module-loading risk if NODE_PATH or local npm cache/module contents are attacker-controlled. There is no direct malware/payload behavior evident in the provided snippet; the highest concerns are misuse capability and dependency-resolution hijacking in a compromised environment, with additional unknown risk introduced by the delegated upload.sh.

Confidence: 66%Severity: 52%
Audit Metadata
Analyzed At
Jun 25, 2026, 08:00 PM
Package URL
pkg:socket/skills-sh/buildinternet%2Fskills%2Fgithub-screenshots%2F@b82fff7bda6a13e983493c754f3949a77710357ae20b494d3a2cde1a29dbd313
Security Audit — socket — github-screenshots