affinity-automation

Warn

Audited by Socket on Jun 24, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill is mostly aligned with its stated purpose and shows same-org provenance for Composio/Rube, but it routes Affinity access and workflow data through a third-party MCP intermediary and has notable documentation/setup inconsistencies. No direct malware indicators, obfuscation, credential-file theft, or unsafe installers were found.

Confidence: 82%Severity: 56%
Audit Metadata
Analyzed At
Jun 24, 2026, 05:03 PM
Package URL
pkg:socket/skills-sh/ranbot-ai%2Fawesome-skills%2Faffinity-automation%2F@66f89bbb191d00f15f43f1ed49bb62b83014624b06c77df1bc1296a7c6fa5a8f
Security Audit — socket — affinity-automation