azuresql-db-sidecar

Warn

Audited by Socket on Jul 8, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS. The skill’s purpose and data flows are mostly coherent and Microsoft-associated, but it requires pulling and running an unverifiable private-preview container image tagged `latest` and passing credentials into it. Under the mandated scoring rules for unverifiable executables that receive credentials, this is high security risk even without clear malicious intent.

Confidence: 83%Severity: 84%
Audit Metadata
Analyzed At
Jul 8, 2026, 04:23 AM
Package URL
pkg:socket/skills-sh/microsoft%2Fazure-sql-database-container%2Fazuresql-db-sidecar%2F@214faaa1fb8dba527f549627ac0bda7bf378c744bd5e02995d2458fe03945ceb
Security Audit — socket — azuresql-db-sidecar