exploiting-mass-assignment-in-rest-apis

Warn

Audited by Socket on Apr 9, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS: the skill is internally consistent, but its purpose is offensive security and it gives an AI agent concrete exploitation steps against REST APIs, including authenticated privilege escalation and business-logic abuse. Tool references are mostly legitimate, yet the operational footprint is still high-risk because it enables real-world attacks rather than benign documentation or defensive validation alone.

Confidence: 93%Severity: 88%
Audit Metadata
Analyzed At
Apr 9, 2026, 10:28 AM
Package URL
pkg:socket/skills-sh/mukul975%2FAnthropic-Cybersecurity-Skills%2Fexploiting-mass-assignment-in-rest-apis%2F@1aa2e1d03625cba401b16be516e639661450a569
Security Audit — socket — exploiting-mass-assignment-in-rest-apis