who-blue-books

The skill is generally coherent with its stated educational purpose of interfacing with WHO Blue Book content via a dedicated CLI. The primary security concerns center on installation provenance and credential management for the who-api-client (unverified install sources and subscription handling). Data flow appears to be within expected boundaries for a knowledge-aid tool, with no evident exfiltration or autonomous real-world actions. Given the unverifiable install path and credential dependency, the risk is better classified as suspicious rather than benign, pending clarification on trusted installation sources, signing, and explicit credential-handling practices.