jupyter-live-kernel

Warn

Audited by Socket on May 16, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s purpose is coherent and data flows are mostly local, but its trust model is weaker than necessary. The main risks are the unpinned clone of a personal GitHub repo for the core script and the explicit disabling of Jupyter authentication, which creates a locally exposed execution surface.

Confidence: 89%Severity: 68%
Audit Metadata
Analyzed At
May 16, 2026, 01:47 PM
Package URL
pkg:socket/skills-sh/NousResearch%2Fhermes-agent%2Fjupyter-live-kernel%2F@dd2794c142df467c68827c20f8d7579deab97263
Security Audit — socket — jupyter-live-kernel