pp-everbee

Warn

Audited by Socket on Jun 26, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the core Etsy/EverBee research purpose matches the documented capabilities, but the skill expands scope with external CLI installation, author/source mismatch, arbitrary webhook posting, and optional feedback export. This looks more like a high-risk wrapper around third-party binaries than overt malware.

Confidence: 82%Severity: 68%
Audit Metadata
Analyzed At
Jun 26, 2026, 10:41 AM
Package URL
pkg:socket/skills-sh/mvanhorn%2Fprinting-press-library%2Fpp-everbee%2F@1cd8697abeda4e51a94da31f70fa0fbccf04b4c2d7e4f359ba09b4cb5a243b6e
Security Audit — socket — pp-everbee