create-swag-config

Warn

Audited by Socket on Jun 18, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s capabilities broadly match SWAG config management, but it defaults to a custom third-party MCP service and personal-container namespace rather than direct local administration or an official vendor endpoint. That creates meaningful supply-chain and remote-control-plane risk, though there is no clear evidence of credential theft or overtly malicious behavior.

Confidence: 82%Severity: 64%
Audit Metadata
Analyzed At
Jun 18, 2026, 12:26 PM
Package URL
pkg:socket/skills-sh/jmagar%2Flab%2Fcreate-swag-config%2F@d309bcbfd9c1c507e3c696c69520548aa3bac256ffeb74833a07c54453d8a38d
Security Audit — socket — create-swag-config