cli-expert

Fail

Audited by Socket on Feb 27, 2026

1 alert found:

Malware
MalwareHIGH
SKILL.md

The analyzed fragment is a policy/document-style skill description with no runtime code, no credential handling, and no network activity. It does not introduce any direct supply-chain abuse vectors in isolation. If integrated into a larger system, risks would depend on how the agent leverages these guidelines (e.g., performing npm publish, CI automation, or remote downloads). Based on the provided content alone, the footprint is benign and aligned with CLI development best practices.

Confidence: 95%Severity: 90%
Audit Metadata
Analyzed At
Feb 27, 2026, 06:15 PM
Package URL
pkg:socket/skills-sh/duck4nh%2Fantigravity-kit%2Fcli-expert%2F@7e30c24afbbaf8e2dde0bbb6f896a3bf42cfb9c6
Security Audit — socket — cli-expert