iblai-vibe-agent-access

Warn

Audited by Socket on Jul 7, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the core purpose and capabilities are mostly aligned for an ibl.ai Next.js integration, and the install sources are largely same-org or mainstream. The main concerns are transitive skill execution, mutable raw GitHub content, and autonomous code/test/server actions; these raise security risk above benign but do not show clear malicious intent or credential harvesting.

Confidence: 84%Severity: 58%
Audit Metadata
Analyzed At
Jul 7, 2026, 01:02 PM
Package URL
pkg:socket/skills-sh/iblai%2Fvibe%2Fiblai-vibe-agent-access%2F@04949226c541381b5a16355020b26bec5984b3115ab501affa1dfa3c12274b0b
Security Audit — socket — iblai-vibe-agent-access