cloudflare-traffic-investigator
Warn
Audited by Socket on Mar 25, 2026
1 alert found:
SecuritySecuritySKILL.md
MEDIUMSecurityMEDIUM
SKILL.md
SUSPICIOUS. The skill’s purpose is coherent with Cloudflare traffic investigation, and the intended data flow appears to target first-party Cloudflare services. However, it relies on an unverified `cloudflare-mcp-cli` package/binary installed via unpinned npm and then used for authenticated Cloudflare access, creating a high supply-chain and credential-forwarding risk that is disproportionate for incident investigation.
Confidence: 84%Severity: 82%
Audit Metadata