azure-api-management

Warn

Audited by Socket on May 1, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill is internally coherent for a Membrane-based Azure API Management integration and uses an official npm package, so it is not overtly malicious. However, it routes authentication and API interaction through Membrane rather than directly to Microsoft, requires trust in a third-party managed platform, and uses a mutable `@latest` global CLI install, creating moderate security risk.

Confidence: 87%Severity: 56%
Audit Metadata
Analyzed At
May 1, 2026, 12:07 PM
Package URL
pkg:socket/skills-sh/membranedev%2Fapplication-skills%2Fazure-api-management%2F@12e1f5f2e40ffc5d46f7d34b79aee08f1a2a2da5
Security Audit — socket — azure-api-management