skills/membranedev/application-skills/cisco-meraki/Socket

cisco-meraki

Warn

Audited by Socket on Apr 29, 2026

1 alert found:

Anomaly

AnomalySKILL.md

LOW

AnomalyLOW

SKILL.md

SUSPICIOUS. The skill is internally coherent as a Membrane-based Cisco Meraki integration, and the CLI install path appears official via npm, so this is not confirmed malware. However, it routes authentication and Meraki data through Membrane as an intermediary, installs a third-party CLI, uses an unpinned global `@latest`, and enables impactful admin actions; these make it medium risk even though the behavior is disclosed and broadly aligned with purpose.

Confidence: 86%Severity: 58%

Audit Metadata

Analyzed At

Apr 29, 2026, 06:38 AM

Package URL

pkg:socket/skills-sh/membranedev%2Fapplication-skills%2Fcisco-meraki%2F@445437afc72d0d65def5d337ac3cca8162ef2d0c