Skills
skills/membranedev/application-skills/focalboard/Socket

focalboard

Warn

Audited by Socket on May 9, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill is coherent in purpose and uses a legitimate npm-distributed CLI, but it intermediates Focalboard access through Membrane rather than the official Focalboard API. That third-party credential/data routing is disclosed and product-consistent, so this is not confirmed malicious, but it creates meaningful trust and data-flow risk beyond a direct integration.

Confidence: 84%Severity: 58%
Audit Metadata
Analyzed At
May 9, 2026, 11:35 AM
Package URL
pkg:socket/skills-sh/membranedev%2Fapplication-skills%2Ffocalboard%2F@6d1aeaa47fa426aedb71dc89c0d3d216ab0b057e
Security Audit — socket — focalboard