github-workflow

Pass

Audited by Socket on Jun 16, 2026

Checks
Malicious behaviorInjection, exfiltration, untrusted installs
Security concernsCredential exposure, tool/trust exploitation
Code obfuscationHidden or obfuscated code
Suspicious patternsReconnaissance, excessive autonomy, resource use
Audit Metadata
Analyzed At
Jun 16, 2026, 03:11 AM
Package URL
pkg:socket/skills-sh/duyet%2Fcodex-claude-plugins%2Fgithub-workflow%2F@66c2bcc4605d260ef12618138357acc2429a498178528387697ea072bf00439f
Security Audit — socket — github-workflow