skills/elementalsouls/claude-bughunter/hunt-nodejs/Snyk

hunt-nodejs

Fail

Audited by Snyk on Jun 13, 2026

Risk Level: CRITICAL

Full Analysis

CRITICAL E006: Malicious code pattern detected in skill scripts.

Malicious code pattern detected (high risk: 1.00). This document is an explicit offensive playbook for exploiting Node.js/Express applications — detailing prototype pollution to RCE, template SSTI, child_process command injection, trust-proxy abuses, and /proc/self/environ exfiltration — making it high-risk malicious content intended to achieve remote code execution and data/credential exfiltration.

Issues (1)

E006

CRITICAL

Malicious code pattern detected in skill scripts.

Audit Metadata

Risk Level

CRITICAL

Analyzed

Jun 13, 2026, 04:05 PM

Issues

1

Security Audit — snyk — hunt-nodejs