mirantis

Warn

Audited by Socket on May 5, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill's stated purpose matches its behavior, but it intermediates all Mirantis access through Membrane's own CLI and backend instead of official Mirantis APIs. This is not clearly malicious and the installer path is relatively trustworthy, yet the third-party credential/data relay and mutable `@latest` install make the trust model meaningfully riskier than a direct official integration.

Confidence: 82%Severity: 56%
Audit Metadata
Analyzed At
May 5, 2026, 08:44 PM
Package URL
pkg:socket/skills-sh/membranedev%2Fapplication-skills%2Fmirantis%2F@00ed12ef73d341edebc745102b915c8d8ea011da
Security Audit — socket — mirantis