repo-explorer
Warn
Audited by Socket on Jun 19, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
The skill is coherent with its repo-analysis purpose, but it carries medium risk. Main concerns are shell command construction from user-controlled inputs, indirect prompt injection from untrusted repositories into a nested agent with Bash access, and transmission of local/private code to Anthropic via the CLI.
Confidence: 86%Severity: 58%
Audit Metadata