lovstudio-fill-web-form

Warn

Audited by Socket on May 7, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: The skill's core behavior mostly matches its stated purpose, and it has no installer or credential-forwarding red flags. However, it combines arbitrary URL fetching with broad local knowledge-base search and write capability, creating indirect prompt-injection and privacy leakage risk, especially through the mandatory inspected-files tree.

Confidence: 86%Severity: 58%
Audit Metadata
Analyzed At
May 7, 2026, 09:44 AM
Package URL
pkg:socket/skills-sh/lovstudio%2Fskills%2Flovstudio-fill-web-form%2F@6495cb8ab1dc4ba9c506ce6528eddffde69cb488
Security Audit — socket — lovstudio-fill-web-form