ctf-source-audit

Warn

Audited by Socket on Apr 22, 2026

1 alert found:

Security

SecuritySKILL.md

MEDIUM

SecurityMEDIUM

SKILL.md

该技能与其声明的 CTF 源码审计目的基本一致，没有明显恶意植入、凭证窃取或可疑安装链。但它明确教授并强化 AI 代理的漏洞利用与攻击技巧，属于高风险 offensive-security 技能；应判为高风险、非确认恶意。

Confidence: 90%Severity: 82%

Audit Metadata

Analyzed At

Apr 22, 2026, 07:59 AM

Package URL

pkg:socket/skills-sh/wgpsec%2FAboutSecurity%2Fctf-source-audit%2F@7011aa58829c7318dc398a7c070d386100ebc720