scout-ext

Fail

Audited by Snyk on Apr 10, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E006: Malicious code pattern detected in skill scripts.

  • Malicious code pattern detected (high risk: 0.90). This skill is a high-risk reconnaissance facilitator: it explicitly directs breaking work into per-file tasks and invoking external agentic tools (via Bash/install instructions and parallel agent spawning) to search codebases — a workflow that strongly enables unauthorized data exfiltration and credential disclosure and could coerce users into installing or authenticating third‑party tools (supply‑chain risk), even though it does not itself contain an encoded backdoor or direct remote‑execution payload.

Issues (1)

E006
CRITICAL

Malicious code pattern detected in skill scripts.

Audit Metadata
Risk Level
CRITICAL
Analyzed
Apr 10, 2026, 07:26 AM
Issues
1
Security Audit — snyk — scout-ext