exploiting-websocket-vulnerabilities

SUSPICIOUS. The skill is internally coherent as a WebSocket pentesting guide and uses mostly legitimate install sources, so it is not confirmed malware. However, it gives an AI agent explicit offensive security capabilities, includes credentialed attack workflows, message flooding, and a PoC that exfiltrates captured data to an attacker-controlled endpoint, making it high risk and inappropriate for general agent use.