clawdhub
Warn
Audited by Socket on Jun 23, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
Purpose and capabilities are internally consistent, and the install path appears to be the publisher's official npm-distributed CLI rather than an unknown binary. The main risk is structural: this skill enables transitive installation and bulk updating of additional skills, which can expand the agent's trusted code/instruction set beyond the originally reviewed skill. Overall this is better classified as suspicious/high-risk utility rather than malware.
Confidence: 88%Severity: 62%
Audit Metadata