when-releasing-software-use-github-release-management

Warn

Audited by Socket on Jun 26, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the core release-management behavior is coherent, but the skill couples that high-impact authority with a third-party alpha CLI/MCP ecosystem and broad autonomous deployment actions. No direct credential theft or exfiltration is evident, yet the supply-chain and operational trust footprint is medium-to-high for a release skill.

Confidence: 85%Severity: 66%
Audit Metadata
Analyzed At
Jun 26, 2026, 03:22 AM
Package URL
pkg:socket/skills-sh/DNYoussef%2Fai-chrome-extension%2Fwhen-releasing-software-use-github-release-management%2F@86f9824f3873e549334263d9eb6a5132eaeca6c263604e7e729d893717fb0e8d
Security Audit — socket — when-releasing-software-use-github-release-management