Skills
skills/cafe3310/public-agent-skills/plugin-search-and-use/Socket

plugin-search-and-use

Warn

Audited by Socket on May 13, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

整体更像本地插件/技能路由器,本身未表现出明确恶意或凭据窃取行为;主要风险来自对外部SKILL说明的信任与注入、以及可手动模拟插件命令/hook带来的间接执行面。判定为 SUSPICIOUS(偏中等风险),非确认恶意。

Confidence: 86%Severity: 57%
Audit Metadata
Analyzed At
May 13, 2026, 02:22 PM
Package URL
pkg:socket/skills-sh/cafe3310%2Fpublic-agent-skills%2Fplugin-search-and-use%2F@0cd3499fab968fd9d6443328d0fee4308b9cab25