pp-beehiiv
Warn
Audited by Socket on May 16, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
Mostly coherent Beehiiv automation skill with proportionate Beehiiv token use and expected API-management scope. Main risks are supply-chain trust in the external CLI install, unpinned fallback installation, optional webhook delivery to arbitrary URLs, and an extra MCP install step; these make it suspicious/medium-risk rather than clearly malicious.
Confidence: 79%Severity: 53%
Audit Metadata