drawio

Fail

Audited by Socket on May 25, 2026

1 alert found:

Obfuscated File
Obfuscated FileHIGH
stencils/alibaba_cloud.md

The provided fragment is a static catalog of 310 Alibaba Cloud mxgraph stencil identifiers with dimension metadata and a usage example. No executable logic, input handling, network activity, or data exfiltration is present. Malware and runtime risk within the fragment itself are extremely low. The primary concerns would arise from distribution integrity (tampering, supply-chain compromise) rather than the fragment content itself. Overall, this appears safe as a static design asset; monitor distribution channels for integrity and authenticity in a real-world package.

Confidence: 90%
Audit Metadata
Analyzed At
May 25, 2026, 02:16 AM
Package URL
pkg:socket/skills-sh/Chanw-research%2Fclaude-code-paper-writing%2Fdrawio%2F@2c39db0a78f6efd070b38c630ba3d6163c563338
Security Audit — socket — drawio