Skills
skills/wenjunduan/rlues/execute/Socket

execute

Warn

Audited by Socket on May 2, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

整体更像本地开发执行工作流技能,目的与 Bash/读写/测试能力基本一致,未见明显凭据窃取或外传数据路径,因此不像恶意技能。但它引入了未充分验证的委托命令与子代理信任链,且会把外部代理生成内容带入可写文件和可执行测试的环境,存在中等安全风险,结论偏可疑而非恶意。

Confidence: 82%Severity: 56%
Audit Metadata
Analyzed At
May 2, 2026, 10:38 PM
Package URL
pkg:socket/skills-sh/WenJunDuan%2FRlues%2Fexecute%2F@795c55cef2b167e4c007730b8712a41d75f9ed68
Security Audit — socket — execute