Skills
skills/redfox-data/redfox-community/xiaohongshu-prohibited-word/Socket

xiaohongshu-prohibited-word

Warn

Audited by Socket on Jun 12, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

该技能目的与能力基本一致:本地提取文本后调用违禁词检测 API。主要风险来自外部 SaaS 数据外传、读取 shell 配置中的 API key、可改写为自定义 API 端点,以及 Playwright 浏览器二进制安装。整体更像有实际用途的第三方集成技能,而非明显恶意;但权限与数据流比纯本地检测更敏感,结论为 SUSPICIOUS。

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 12, 2026, 07:53 PM
Package URL
pkg:socket/skills-sh/redfox-data%2Fredfox-community%2Fxiaohongshu-prohibited-word%2F@a35fb4e731cc4ff34d1f7039403f119d4d09bfe7343d4449d977dfcc2cb3c210
Security Audit — socket — xiaohongshu-prohibited-word