go

Warn

Audited by Socket on May 7, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The core browser-testing purpose is coherent, but the skill is over-broad because it normalizes reading .env.local or secrets-manager credentials for login and leaves tool choice open to whatever browser integration is reachable. There is no clear credential exfiltration or malicious endpoint, so this is not malware, but it carries medium security risk from secret access and untrusted-content handling during browser-driven verification.

Confidence: 87%Severity: 56%
Audit Metadata
Analyzed At
May 7, 2026, 04:18 AM
Package URL
pkg:socket/skills-sh/laguagu%2Fclaude-code-nextjs-skills%2Fgo%2F@e3414d68c7c351befa9900f8bef305802a40a155
Security Audit — socket — go