oss-forensics-orchestration

Warn

Audited by Socket on May 31, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the overall workflow is broadly aligned with OSS forensics, but the footprint is somewhat disproportionate because it requires Google Cloud credentials and executes unseen local Python from a prebuilt virtualenv without provenance details. Data flows largely match the purpose and there is no clear evidence of credential theft or malware, but the combination of hidden local execution, cloud-auth dependence, and untrusted external-content processing creates medium security risk.

Confidence: 84%Severity: 57%
Audit Metadata
Analyzed At
May 31, 2026, 12:33 AM
Package URL
pkg:socket/skills-sh/gadievron%2Fraptor%2Foss-forensics-orchestration%2F@b0de4123444802a81fbda682383fce5ffd9d2418
Security Audit — socket — oss-forensics-orchestration