money-product
Warn
Audited by Socket on May 16, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS. The skill's core capabilities mostly match its stated purpose as an end-to-end product launch assistant, and its main tooling references are official ecosystems. However, the hard-coded Vercel scope, broad autonomous deployment/payment actions, third-party ccapi.ai routing option, and transitive skill chaining create meaningful security and trust concerns disproportionate to a normal narrowly scoped build guide.
Confidence: 84%Severity: 66%
Audit Metadata