skillshare

Warn

Audited by Socket on Jun 23, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

Overall coherent with its stated purpose as a multi-tool skill manager, but inherently medium risk because it installs/syncs third-party skills from arbitrary repos and can execute local extensions. No clear evidence of credential theft, covert exfiltration, or malicious intent in the skill text.

Confidence: 88%Severity: 64%
Audit Metadata
Analyzed At
Jun 23, 2026, 12:31 AM
Package URL
pkg:socket/skills-sh/oldwinter%2Fskills%2Fskillshare%2F@efdcb375011b57ea6df397cd9252f592cbd9af64b7ad7be4be12f70cb61c10af
Security Audit — socket — skillshare