scholar-sidekick

Pass

Audited by Socket on Jun 25, 2026

Checks
Malicious behaviorInjection, exfiltration, untrusted installs
Security concernsCredential exposure, tool/trust exploitation
Code obfuscationHidden or obfuscated code
Suspicious patternsReconnaissance, excessive autonomy, resource use
Audit Metadata
Analyzed At
Jun 25, 2026, 02:58 PM
Package URL
pkg:socket/skills-sh/mlava%2Fscholar-sidekick-mcp%2Fscholar-sidekick%2F@499e56c75529ba4dfd6a6deb86f2f5340ad22e1dcab11e0f6395b3b68360742e
Security Audit — socket — scholar-sidekick