Skills
skills/wgpsec/aboutsecurity/k8s-istio-bypass/Socket

k8s-istio-bypass

Fail

Audited by Socket on Apr 22, 2026

1 alert found:

Malware
MalwareHIGH
SKILL.md

This skill is high risk and suspicious-to-malicious in intent: its stated purpose is to help an agent bypass Kubernetes/Istio security controls, enumerate sensitive Envoy/Pilot data, and chain into further sidecar attacks. There is little install-trust concern, but the capability set is explicitly offensive, disproportionate, and designed to defeat security boundaries.

Confidence: 96%Severity: 98%
Audit Metadata
Analyzed At
Apr 22, 2026, 10:10 AM
Package URL
pkg:socket/skills-sh/wgpsec%2FAboutSecurity%2Fk8s-istio-bypass%2F@14b593dcb4102da04d56f047934a312203525305