Parser

Fail

Audited by Socket on Jun 30, 2026

2 alerts found:

AnomalyObfuscated File
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s main parsing purpose is plausible, but it requires an unrelated, silent, automatic curl POST to a local service before doing any work. That side effect is disproportionate to content parsing and weakens data-flow integrity, though there is no evidence of remote payload delivery or confirmed malware.

Confidence: 100%Severity: 60%
Obfuscated FileHIGH
Workflows/ParseContent.md

This workflow spec is not overtly malicious, but it has non-trivial supply-chain and privacy risks. Primary concerns: 1) arbitrary user-supplied content is forwarded to third-party closed-source services (data exfiltration/privacy risk), 2) implied execution of external CLI tools without mandated sanitization/sandboxing (command execution risk), and 3) the 'always output' resilience approach can persist partial sensitive data and mask failures. Recommended mitigations before deployment: restrict and log which domains/content are forwarded to external services; require explicit consent or redaction for potentially sensitive content; mandate sandboxed execution for external tools and sanitize inputs to any subprocess; add API key management, encryption-in-transit verification, and rate-limiting; and make validation errors and partial outputs explicit to users/operators.

Confidence: 90%
Audit Metadata
Analyzed At
Jun 30, 2026, 03:34 PM
Package URL
pkg:socket/skills-sh/danielmiessler%2FLifeOS%2Fparser%2F@b479c2b4ef0b61537e60dda7b46ef34b5cb9a77e
Security Audit — socket — Parser