aave-v3-plugin

Warn

Audited by Socket on May 29, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS. The skill’s purpose and capabilities are internally aligned for an Aave DeFi assistant, and the install sources appear to be officially tied to OKX with checksum verification. However, it carries elevated risk because it installs external binaries, loads additional skills, auto-updates from remote manifests, and enables high-impact financial transactions.

Confidence: 89%Severity: 74%
Audit Metadata
Analyzed At
May 29, 2026, 03:05 AM
Package URL
pkg:socket/skills-sh/okx%2Fplugin-store%2Faave-v3-plugin%2F@6203f9f680146da5728f244f9af2bcf49fc94087
Security Audit — socket — aave-v3-plugin