code-understanding
Warn
Audited by Socket on May 31, 2026
1 alert found:
SecuritySecuritySKILL.md
MEDIUMSecurityMEDIUM
SKILL.md
SUSPICIOUS: The skill is internally coherent for security research, but it materially equips the agent for offensive-style code analysis and includes execution of repo-local helper scripts plus optional binary probing. No clear credential harvesting or exfiltration is present, yet the combination of security-research capability and partially unverified helper command provenance makes this a high-risk skill rather than benign.
Confidence: 85%Severity: 72%
Audit Metadata