brand-protection-walmart

Warn

Audited by Socket on May 24, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The stated Walmart brand-protection purpose is plausible, but the actual operational footprint cannot be verified because the referenced scripts are missing and installation occurs through a transitive `npx skills add` path into a broader repository. This is more a supply-chain and trust-boundary concern than confirmed malicious behavior; no direct credential theft or exfiltration is visible in the provided skill text.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
May 24, 2026, 10:04 PM
Package URL
pkg:socket/skills-sh/nexscope-ai%2FeCommerce-Skills%2Fbrand-protection-walmart%2F@3fabc8302d99a6c60e3c27e5ab69a13c92d85f72
Security Audit — socket — brand-protection-walmart