create-opencode-plugin

Pass

Audited by Socket on Apr 13, 2026

Checks

Malicious behaviorInjection, exfiltration, untrusted installs

Security concernsCredential exposure, tool/trust exploitation

Code obfuscationHidden or obfuscated code

Suspicious patternsReconnaissance, excessive autonomy, resource use

Audit Metadata

Analyzed At

Apr 13, 2026, 11:06 AM

Package URL

pkg:socket/skills-sh/jal-co%2Fjalco-opencode%2Fcreate-opencode-plugin%2F@f5473e1ffd19247fe6e3068c9c3c27fd88c0c57e