performing-web-cache-deception-attack

Warn

Audited by Socket on Apr 7, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS: the skill is internally consistent, but its stated purpose is to help an AI agent perform real offensive web attacks and extract sensitive authenticated content from targets. There is little supply-chain concern, but the exploit, credential/session use, data-exposure objective, and victim-social-engineering steps make it high security risk.

Confidence: 95%Severity: 94%
Audit Metadata
Analyzed At
Apr 7, 2026, 01:03 PM
Package URL
pkg:socket/skills-sh/mukul975%2FAnthropic-Cybersecurity-Skills%2Fperforming-web-cache-deception-attack%2F@210f395071da85c5f036d15311cac314b644d4be
Security Audit — socket — performing-web-cache-deception-attack