nexus-submit-spec

Warn

Audited by Socket on May 30, 2026

1 alert found:

Security
SecurityMEDIUM
SKILL.md

SUSPICIOUS: the skill’s purpose and commands are internally coherent for a gated-spec submission workflow, but it depends on an unverifiable `probe` CLI for all sensitive actions. That unverifiable executable drives the main risk; absent public provenance for `probe`, this should be treated as high security risk rather than confirmed malware.

Confidence: 82%Severity: 78%
Audit Metadata
Analyzed At
May 30, 2026, 02:13 AM
Package URL
pkg:socket/skills-sh/zenon-red%2Fskills%2Fnexus-submit-spec%2F@2f5a997b8cb7f980eb3a6fb4a1fe3c1b5c9add69
Security Audit — socket — nexus-submit-spec