code-exec-fallback
Warn
Audited by Socket on May 15, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS. The skill is internally consistent as a code-execution fallback, but its actual effect is to bypass a safer sandbox and grant broader host execution through shell commands. There are no clear exfiltration, credential-harvesting, or installer red flags, yet the control-bypass pattern makes the skill medium risk for AI-agent use.
Confidence: 86%Severity: 58%
Audit Metadata