obliteratus

Warn

Audited by Socket on May 16, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS. The skill is internally coherent, but its stated goal is to remove LLM safety controls, which is a high-risk capability for an AI agent. The install path uses an unpinned editable install from a personal GitHub repo, and optional telemetry adds minor data-flow uncertainty. I do not see confirmed credential theft or hidden exfiltration, so this is better classified as high-risk vulnerable/suspicious rather than malware.

Confidence: 85%Severity: 76%
Audit Metadata
Analyzed At
May 16, 2026, 01:48 PM
Package URL
pkg:socket/skills-sh/NousResearch%2Fhermes-agent%2Fobliteratus%2F@ad5ee37c6be810bcd8d37ace5e0c16cc47dbf517
Security Audit — socket — obliteratus