Trust Assessment
socket-gen received a trust score of 65/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 2 findings: 1 critical, 0 high, 1 medium, and 0 low severity. Key findings include Unpinned npm dependency version, Direct User Input in LLM Prompt.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings2
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Direct User Input in LLM Prompt The user-provided `description` from the command line is directly inserted into the `user` message content of the OpenAI API call without any sanitization, validation, or separation. This creates a direct prompt injection vulnerability. A malicious user can craft the `description` to manipulate the LLM's behavior, override the system prompt, or attempt to extract sensitive information from the LLM's context or instructions. Implement robust input sanitization and validation for user-provided input before it is passed to the LLM. Consider using prompt templating, input filtering, or a separate LLM call to classify/refine user input. Ensure the system prompt is designed to be resilient against injection attempts, or employ a 'jailbreak detection' mechanism. | LLM | src/index.ts:9 | |
| MEDIUM | Unpinned npm dependency version Dependency 'commander' is not pinned to an exact version ('^12.1.0'). Pin dependencies to exact versions to reduce drift and supply-chain risk. | Dependencies | skills/lxgicstudios/socket-gen/package.json |
Scan History
Embed Code
[](https://skillshield.io/report/7719fd0c804a7034)
Powered by SkillShield