sn-research-report

Warn

Audited by Socket on Apr 29, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

总体偏可疑而非恶意。核心写作/报告生成功能与声明目的基本一致，但对未验证来源的 sn-image-base 存在明显转移信任与供应链风险；若启用该依赖，报告内容和潜在配置可能流向未说明的外部服务。

Confidence: 84%Severity: 72%

Audit Metadata

Analyzed At

Apr 29, 2026, 09:39 AM

Package URL

pkg:socket/skills-sh/OpenSenseNova%2FSenseNova-Skills%2Fsn-research-report%2F@0456809f112ae87bb241526b43ab28583b07e33a