Skills
skills/membranedev/application-skills/ninox/Socket

ninox

Warn

Audited by Socket on Apr 30, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill is coherent as a Membrane-powered Ninox connector, but its real footprint is broader than a plain Ninox integration because authentication, credentials, and data access are mediated by Membrane. Install provenance is reasonably legitimate via npm, so this is not confirmed malware, but the third-party gateway model and unpinned CLI install create meaningful medium risk.

Confidence: 85%Severity: 58%
Audit Metadata
Analyzed At
Apr 30, 2026, 12:54 PM
Package URL
pkg:socket/skills-sh/membranedev%2Fapplication-skills%2Fninox%2F@87b80efc0cd5dbfe734e3cb040c50872d6867e8a
Security Audit — socket — ninox