claude-api

Warn

Audited by Socket on May 25, 2026

1 alert found:

Anomaly
AnomalyLOW
python/agent-sdk/README.md

The document is a README describing an SDK that exposes powerful primitives: file read/write, shell execution, external MCP commands (runnable via npx), web/network access, environment variable control, hooks, and session persistence. The README itself is not malicious, but the documented features (notably 'bypassPermissions', 'acceptEdits', arbitrary MCP command execution, and hooks receiving file contents) represent high-risk functionality if present in the implementation and used without strict controls. I rate this as not directly malware but a moderate-to-high security risk surface that demands careful implementation, strong defaults, and user caution when enabling permissive modes or MCP servers.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
May 25, 2026, 05:39 AM
Package URL
pkg:socket/skills-sh/guanyang%2Fantigravity-skills%2Fclaude-api%2F@b825f788f5bda30e8a47e2f4637a10c82a318d8a
Security Audit — socket — claude-api