Parser
Audited by Socket on Jun 30, 2026
2 alerts found:
AnomalyObfuscated FileSUSPICIOUS: the skill’s main parsing purpose is plausible, but it requires an unrelated, silent, automatic curl POST to a local service before doing any work. That side effect is disproportionate to content parsing and weakens data-flow integrity, though there is no evidence of remote payload delivery or confirmed malware.
This workflow spec is not overtly malicious, but it has non-trivial supply-chain and privacy risks. Primary concerns: 1) arbitrary user-supplied content is forwarded to third-party closed-source services (data exfiltration/privacy risk), 2) implied execution of external CLI tools without mandated sanitization/sandboxing (command execution risk), and 3) the 'always output' resilience approach can persist partial sensitive data and mask failures. Recommended mitigations before deployment: restrict and log which domains/content are forwarded to external services; require explicit consent or redaction for potentially sensitive content; mandate sandboxed execution for external tools and sanitize inputs to any subprocess; add API key management, encryption-in-transit verification, and rate-limiting; and make validation errors and partial outputs explicit to users/operators.