whatweb

SUSPICIOUS: the install paths are mostly coherent with the stated purpose, but this skill’s actual purpose is to give an AI agent offensive web reconnaissance capability. That alone makes it high risk, and the third-party Docker image plus metadata mismatch add trust concerns. No strong evidence of credential theft or covert exfiltration was found.