yanzi-extension-dev

Warn

Audited by Socket on Jun 18, 2026

1 alert found:

Anomaly
AnomalyLOW
references/local-agent-api.md

No direct malicious code is shown because this is an API reference. However, the described localhost service is a security-critical control plane: with access to the X-Yanzi-Token, an attacker could manage extensions (create/update/install/publish), trigger extension execution, alter storage, and force synchronization of extension storage to external WebDAV/Git providers. The security posture therefore depends heavily on the strength and protection of the local token, the binding/authorization model, and safety measures around extension execution and storage/sync handling. Review the actual server implementation for robust authz scoping, input validation, execution sandboxing, and safeguards that prevent unauthorized extension execution and unintended data propagation.

Confidence: 56%Severity: 60%
Audit Metadata
Analyzed At
Jun 18, 2026, 11:24 PM
Package URL
pkg:socket/skills-sh/luoluoluo22%2Fyanzi%2Fyanzi-extension-dev%2F@c4e37948a84ab6073c2d721501a5ea0e920a633c261dfb9ada7d52d8e98dbe1a
Security Audit — socket — yanzi-extension-dev