agent-teams-simplify-and-harden

Warn

Audited by Socket on Apr 20, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: The skill’s core behavior is broadly consistent with its stated purpose of orchestrated implementation and audit loops, so there is no clear evidence of malware or credential theft. The main risks are proportionality and trust: it installs a third-party personal-repo skill, enables broad autonomous code-edit/build/test loops with `bypassPermissions`, and chains into another skill, creating a medium-to-high operational security risk even though the workflow itself is plausible.

Confidence: 85%Severity: 66%
Audit Metadata
Analyzed At
Apr 20, 2026, 02:08 PM
Package URL
pkg:socket/skills-sh/pskoett%2Fpskoett-ai-skills%2Fagent-teams-simplify-and-harden%2F@2e46b354a82c8024f49b504636caf59c26ea9f4b
Security Audit — socket — agent-teams-simplify-and-harden