last30days-cn

Warn

Audited by Socket on Jul 7, 2026

1 alert found:

Anomaly
AnomalyLOW
hooks/hooks.json

This fragment is primarily a lifecycle hook configuration that triggers `bash` to execute a local `check-config.sh` script on SessionStart. No explicit malicious behavior is visible in the snippet itself, but it introduces a moderate supply-chain/path-integrity risk by performing shell command execution using a runtime-resolved root path. Verification requires reviewing the actual `check-config.sh` contents and ensuring `${CLAUDE_PLUGIN_ROOT}` and the script file are protected from tampering (e.g., by signed artifacts, locked dependencies, and verified installation paths).

Confidence: 62%Severity: 52%
Audit Metadata
Analyzed At
Jul 7, 2026, 02:02 AM
Package URL
pkg:socket/skills-sh/Jesseovo%2Flast30days-skill-cn%2Flast30days-cn%2F@a2149277b73140434a5711f007d2dcdbe5a3be86
Security Audit — socket — last30days-cn