nexus-proposal-scout

Warn

Audited by Socket on May 30, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

Purpose and capabilities are mostly aligned: it reads org policy, checks backlog, drafts one proposal, submits it, and posts a short notice. The main risk is trust in the unverifiable `probe` CLI plus autonomous write actions through that backend; GitHub usage appears normal and same-purpose. Overall this is suspicious/high-risk from a supply-chain and agent-action perspective, but not confirmed malware.

Confidence: 84%Severity: 78%
Audit Metadata
Analyzed At
May 30, 2026, 02:12 AM
Package URL
pkg:socket/skills-sh/zenon-red%2Fskills%2Fnexus-proposal-scout%2F@a1956228427cf00317acd925c464368be19118bd
Security Audit — socket — nexus-proposal-scout