session-wrap-up

Fail

Audited by Socket on Jun 20, 2026

1 alert found:

Obfuscated File
Obfuscated FileHIGH
evals/files/setup-eval-2.sh

The fragment is a conventional project bootstrap with an embedded deployment script. While no malicious code is evident, the deploy.sh introduces a significant operational risk by automating pushes to a git origin and remote production deployment. This pattern warrants strict access control, auditing, and safer deployment gating before reuse in public or shared contexts.

Confidence: 90%
Audit Metadata
Analyzed At
Jun 20, 2026, 02:05 PM
Package URL
pkg:socket/skills-sh/xpepper%2Fsession-wrap-up-agent-skill%2Fsession-wrap-up%2F@fdecaedffc11b4d1e691af70edba9123e5e86390
Security Audit — socket — session-wrap-up