anything-analyzer-cdp

SUSPICIOUS. The skill’s capture capabilities match its stated purpose, but the footprint is high-risk: it records full browser traffic, cookies, storage, and auth flows, then forwards them to external AI services or arbitrary custom endpoints. The install path is conventional source-based JS tooling, yet the publisher/repo mismatch and the exfiltration of sensitive session data make this disproportionate for a generic AI agent skill.