sales-openinfluence

Warn

Audited by Socket on Apr 20, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the core Open Influence guidance content is benign and well-scoped, but the included `npx skills add ...` instruction creates a transitive trust chain to an unrelated third-party skill repo and unpinned external CLI execution. No signs of credential theft or exfiltration were found, so this is a medium supply-chain/trust concern rather than malware.

Confidence: 86%Severity: 52%
Audit Metadata
Analyzed At
Apr 20, 2026, 06:38 PM
Package URL
pkg:socket/skills-sh/sales-skills%2Fsales%2Fsales-openinfluence%2F@40fbdf9d4e81dc3d2f9e9275a1c162f70f5f5368
Security Audit — socket — sales-openinfluence