iblai-vibe-agent-access
Warn
Audited by Socket on Jul 7, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS: the core purpose and capabilities are mostly aligned for an ibl.ai Next.js integration, and the install sources are largely same-org or mainstream. The main concerns are transitive skill execution, mutable raw GitHub content, and autonomous code/test/server actions; these raise security risk above benign but do not show clear malicious intent or credential harvesting.
Confidence: 84%Severity: 58%
Audit Metadata