skills/jeremylongshore/claude-code-plugins-plus-skills/license-compliance-scanner/Socket

license-compliance-scanner

Warn

Audited by Socket on May 4, 2026

1 alert found:

Anomaly

AnomalySKILL.md

LOW

AnomalyLOW

SKILL.md

SUSPICIOUS: the skill is not overtly malicious and shows no credential theft or exfiltration path, but its purpose is vague and mismatched to its broad execution scope. The main risk is disproportionate Bash(npm:*) access for a generic, underspecified guidance skill.

Confidence: 88%Severity: 56%

Audit Metadata

Analyzed At

May 4, 2026, 02:31 PM

Package URL

pkg:socket/skills-sh/jeremylongshore%2Fclaude-code-plugins-plus-skills%2Flicense-compliance-scanner%2F@83053bcc066c71f0d0018e0ab2604fc585220448