iblai-vibe-monetization-onboard
Warn
Audited by Socket on Jul 7, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS: The skill’s core Stripe Connect functionality is coherent with its stated purpose and sends credentials to first-party ibl.ai/Stripe endpoints, but it also expands trust with mutable install/update commands, raw GitHub downloads, MCP/tooling setup, and transitive skill execution. This looks more like a legitimate internal developer skill with medium supply-chain and trust-scope risk than credential-harvesting malware.
Confidence: 82%Severity: 57%
Audit Metadata