lat
Enables structured annotation of Claude Code outputs in a browser, enhancing interaction and response clarity.
Install this skill
or
81/100
Security score
The lat skill was audited on Jun 6, 2026 and we found 11 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 36
Curl to non-GitHub URL
SourceSKILL.md
| 36 | curl -sf http://127.0.0.1:4747/health > /dev/null 2>&1 |
medium line 69
Curl to non-GitHub URL
SourceSKILL.md
| 69 | HEALTH=$(curl -sf http://127.0.0.1:4747/health 2>/dev/null && echo "running" || echo "not running") |
low line 29
Access to hidden dotfiles in home directory
SourceSKILL.md
| 29 | mkdir -p ~/.lat |
low line 30
Access to hidden dotfiles in home directory
SourceSKILL.md
| 30 | echo "on" > ~/.lat/active |
low line 57
Access to hidden dotfiles in home directory
SourceSKILL.md
| 57 | mkdir -p ~/.lat |
low line 58
Access to hidden dotfiles in home directory
SourceSKILL.md
| 58 | echo "off" > ~/.lat/active |
low line 68
Access to hidden dotfiles in home directory
SourceSKILL.md
| 68 | STATE=$(cat ~/.lat/active 2>/dev/null || echo "off") |
low line 36
External URL reference
SourceSKILL.md
| 36 | curl -sf http://127.0.0.1:4747/health > /dev/null 2>&1 |
low line 49
External URL reference
SourceSKILL.md
| 49 | open http://127.0.0.1:4747 |
low line 52
External URL reference
SourceSKILL.md
| 52 | Confirm to the user: "LAT enabled. Browser opened at http://127.0.0.1:4747" |
low line 69
External URL reference
SourceSKILL.md
| 69 | HEALTH=$(curl -sf http://127.0.0.1:4747/health 2>/dev/null && echo "running" || echo "not running") |
Scanned on Jun 6, 2026
View Security Dashboard