pp-godaddy

Warn

Audited by Socket on Jun 23, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill's capabilities fit its stated GoDaddy automation purpose, but it routes high-value GoDaddy credentials and potentially sensitive API output through third-party CLI/MCP tooling not clearly owned by GoDaddy. Registry-based installs reduce malware confidence, yet the combination of indirect publisher trust, arbitrary webhook output, and account-changing operations makes the overall security posture medium risk.

Confidence: 78%Severity: 64%
Audit Metadata
Analyzed At
Jun 23, 2026, 10:40 PM
Package URL
pkg:socket/skills-sh/mvanhorn%2Fprinting-press-library%2Fpp-godaddy%2F@74abb308151f92e7856f184ac9169ed4935f28e5ab7db29cdcaa93a6c3b31b2e
Security Audit — socket — pp-godaddy