zergboard-skill
Warn
Audited by Socket on May 15, 2026
1 alert found:
SecuritySecuritySKILL.md
MEDIUMSecurityMEDIUM
SKILL.md
SUSPICIOUS. The core purpose and API data flows are consistent with a Zergboard management skill, but the setup path is high risk: it requires building and trusting an unverifiable external CLI, then entering raw account credentials into it to generate a long-lived admin-capable token. That install and credential flow is disproportionate enough to make the skill risky even though the runtime API usage appears first-party.
Confidence: 83%Severity: 83%
Audit Metadata