audit-website-pro

This skill is functionally consistent with its stated purpose (remote, API-backed website audits). There are no direct code-level malware indicators (no download-and-execute, no credential-file reads, no obfuscated payloads). The main security concerns are supply-chain and privacy: all audited URLs and page content are sent to a single third‑party service (api.402claw.com) via the x402 micropayment gateway, and the documentation does not state retention or sharing policies. Before using this skill, users should confirm privacy/data retention practices and consent to micropayments. If users require audits of private/internal sites or strict data control, a local crawl-based tool (the original audit-website) is safer.