heartland

Warn

Audited by Socket on Apr 30, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill's purpose broadly matches Heartland integration, and the CLI source appears to be an official Membrane package, so this is not confirmed malware. However, the skill expands trust to a third-party platform that brokers authentication and data access for Heartland, creating medium risk from credential/data routing and unpinned CLI installation.

Confidence: 86%Severity: 56%
Audit Metadata
Analyzed At
Apr 30, 2026, 01:41 PM
Package URL
pkg:socket/skills-sh/membranedev%2Fapplication-skills%2Fheartland%2F@d825119bc40199881f8ee519b92e8d824e53e65f
Security Audit — socket — heartland