webflow-automation

Warn

Audited by Socket on Jun 24, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the capability set matches Webflow automation, but the skill relies on a deprecated third-party MCP endpoint and routes Webflow access through an intermediary rather than direct official APIs. This looks more like outdated third-party guidance than confirmed malware, but the proxy data flow and production-impact actions make it medium risk.

Confidence: 84%Severity: 58%
Audit Metadata
Analyzed At
Jun 24, 2026, 05:19 PM
Package URL
pkg:socket/skills-sh/ranbot-ai%2Fawesome-skills%2Fwebflow-automation%2F@01a347e7afccb52024a5f31450be634e5d26254095db5408880a47f53a8dbc84
Security Audit — socket — webflow-automation