theangrypit-skillset-bootstrap
Audited by Socket on Jul 3, 2026
2 alerts found:
Anomalyx2SUSPICIOUS: the skill’s purpose and capabilities mostly align, and it uses the official documented `skills` CLI path, but its main function is transitive installation of additional skills from GitHub, including external manifests not shown here. That makes it a coherent bootstrap utility with meaningful supply-chain risk rather than confirmed malware.
No direct malware is evident in this Bash wrapper: it performs input parsing, whitelists scope/agent options, constructs arguments using an argv array (reducing shell injection risk), and only delegates actions to `npx skills add` when `--apply` is used. The main security concern is supply-chain/execution risk: manifest-controlled `source`/`skill` values can drive `npx` to resolve and install/execute attacker-chosen packages/skills depending on how `npx skills add` behaves and what `npx` resolves in the environment. Treat the manifest and invoked `skills`/`npx` tooling as high-trust inputs (pin/verify where possible) and restrict who can author manifests or run with `--apply`.