product-hunt-launch

Warn

Audited by Socket on Apr 2, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill's purpose is coherent, but it relies on a same-org external CLI installed via raw GitHub instructions and asks the agent to install additional skills. Data flows are broadly consistent with launch research and image generation, yet the transitive trust chain and external CLI dependency make the footprint riskier than a simple guidance skill.

Confidence: 82%Severity: 61%
Audit Metadata
Analyzed At
Apr 2, 2026, 07:06 AM
Package URL
pkg:socket/skills-sh/CodeAlive-AI%2Fai-cofounder%2Fproduct-hunt-launch%2F@fb3e4968002ee9b524361ef4f778b6392c3aec01
Security Audit — socket — product-hunt-launch