Skills
skills/wgpsec/aboutsecurity/nxc-cme/Socket

nxc-cme

Warn

Audited by Socket on Apr 22, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

该技能的能力与声明目的相符,但其目的本身是为 AI 代理提供高风险进攻性渗透能力:批量密码喷洒、远程执行、枚举和凭据导出。未见隐藏中转或明显恶意伪装,因而不属于确认恶意软件;但它显著提升代理对真实网络环境造成未授权访问和凭据泄露的风险,应归类为高风险、可疑的安全/渗透技能。

Confidence: 94%Severity: 92%
Audit Metadata
Analyzed At
Apr 22, 2026, 10:10 AM
Package URL
pkg:socket/skills-sh/wgpsec%2FAboutSecurity%2Fnxc-cme%2F@1e0290c0906ddb6c65753af84bd683eb5edf1cc5