pp-booking-com

Warn

Audited by Socket on Jun 21, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill is largely aligned with its Booking.com travel purpose and uses same-author install paths, but it requires trusting an external CLI that handles imported browser session cookies and supports arbitrary webhook delivery of output. That combination creates meaningful credential/data-flow risk without clear evidence of outright malicious intent.

Confidence: 82%Severity: 61%
Audit Metadata
Analyzed At
Jun 21, 2026, 11:17 AM
Package URL
pkg:socket/skills-sh/mvanhorn%2Fprinting-press-library%2Fpp-booking-com%2F@ef38c61c2bcebe241544aed15d6ed2042af84f9c1b41bea6c21fea48475a6583
Security Audit — socket — pp-booking-com