dynamodb-database

Warn

Audited by Socket on Apr 16, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS. The skill’s core purpose and capabilities are mostly aligned, and there is no installer or obvious malware behavior. However, it routes DynamoDB operations and auth through a hidden Rebyte-configured API endpoint instead of direct AWS APIs, and the documented auth/base-URL pattern does not match Rebyte’s public API docs. That makes the data flow less transparent and warrants medium risk, but not a malicious classification on the evidence provided.

Confidence: 83%Severity: 54%
Audit Metadata
Analyzed At
Apr 16, 2026, 05:43 PM
Package URL
pkg:socket/skills-sh/rebyteai%2Frebyte-skills%2Fdynamodb-database%2F@cc6e64f7f563f0c650934de9e40a5ca69f2ac0e7
Security Audit — socket — dynamodb-database