qmd-mcp-skill

Pass

Audited by Socket on Apr 20, 2026

Checks

Malicious behaviorInjection, exfiltration, untrusted installs

Security concernsCredential exposure, tool/trust exploitation

Code obfuscationHidden or obfuscated code

Suspicious patternsReconnaissance, excessive autonomy, resource use

Audit Metadata

Analyzed At

Apr 20, 2026, 01:42 AM

Package URL

pkg:socket/skills-sh/holon-run%2Fuxc%2Fqmd-mcp-skill%2F@1511f02c06a78871c26a2eb828e71b1d8e422729