zstack-ops
Warn
Audited by Socket on Jul 5, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS: the skill's purpose and capabilities mostly align with infrastructure operations, and data flows go to expected first-party endpoints rather than third-party collectors. Risk is elevated because it reads raw local credentials, stores session cookies, and enables live infrastructure changes; however, there is no clear sign of credential harvesting, stealth, or malicious off-platform exfiltration.
Confidence: 84%Severity: 58%
Audit Metadata