pp-qbo
Warn
Audited by Socket on Jun 25, 2026
1 alert found:
AnomalyAnomalySKILL.md
LOWAnomalyLOW
SKILL.md
SUSPICIOUS: The core capability matches the stated QuickBooks purpose and the install sources appear same-project, but the skill still carries medium risk from mutable installer paths, forwarding OAuth secrets into an external CLI, optional webhook delivery of sensitive results, and an optional third-party hosted OAuth redirect. The footprint is mostly coherent, yet the data-handling and autonomous accounting actions warrant caution.
Confidence: 82%Severity: 58%
Audit Metadata