iblai-agent-api
Warn
Audited by Socket on May 20, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS: the core purpose is coherent with a UI integration skill, but the footprint is broader than necessary due to unpinned CLI upgrades, mutable GitHub raw downloads, and reliance on additional external tooling/setup. No clear credential harvesting or exfiltration is present, so this looks more like medium supply-chain and execution-trust risk than malware.
Confidence: 82%Severity: 57%
Audit Metadata