winui-design

Warn

Audited by Socket on May 20, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS: the stated WinUI design purpose is coherent, but the skill's core workflow depends on an unverifiable bundled executable with an unspecified GitHub update path. There is no clear evidence of credential theft or malware, yet the binary trust and update provenance are disproportionate to a documentation-style design skill.

Confidence: 87%Severity: 78%
Audit Metadata
Analyzed At
May 20, 2026, 01:51 PM
Package URL
pkg:socket/skills-sh/microsoft%2Fwin-dev-skills%2Fwinui-design%2F@46c6f474e22800070908ad3c5f7b45cb26c70c77