ic-eo-interpretable-code-based-assistant

Warn

Audited by Socket on Jun 20, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s EO purpose is coherent, but it gives an AI agent a code-generation-and-execution loop over untrusted user input with networked geospatial data access. There is no clear malicious exfiltration path, yet the combination of executable code synthesis, implicit credential scope, and unspecified `iceo_api` provenance creates meaningful security risk.

Confidence: 84%Severity: 64%
Audit Metadata
Analyzed At
Jun 20, 2026, 03:03 AM
Package URL
pkg:socket/skills-sh/ndpvt-web%2Farxiv-claude-skills%2Fic-eo-interpretable-code-based-assistant%2F@bff34754e04e13d81ded07291e591a9113ebc00327792acdca19a2be4114f962
Security Audit — socket — ic-eo-interpretable-code-based-assistant