code-understanding

Warn

Audited by Socket on May 31, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS: The skill is internally coherent for security research, but it materially equips the agent for offensive-style code analysis and includes execution of repo-local helper scripts plus optional binary probing. No clear credential harvesting or exfiltration is present, yet the combination of security-research capability and partially unverified helper command provenance makes this a high-risk skill rather than benign.

Confidence: 85%Severity: 72%
Audit Metadata
Analyzed At
May 31, 2026, 12:33 AM
Package URL
pkg:socket/skills-sh/gadievron%2Fraptor%2Fcode-understanding%2F@b43b193019db0b1ea3df492a84c1081171b68820
Security Audit — socket — code-understanding