pp-whoop

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill includes instructions to install the whoop-pp-cli tool via the @mvanhorn/printing-press package using npx. This is a vendor-provided resource matching the skill author's identity.
  • [COMMAND_EXECUTION]: The skill operates by executing the whoop-pp-cli binary to interact with user data. This behavior is consistent with the skill's stated purpose of providing a CLI for Whoop.
  • [DATA_EXFILTRATION]: The CLI tool documents a --deliver webhook:<url> feature for routing command output to external URLs. This is a legitimate functional capability of the tool for data integration.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 12:33 AM
Security Audit — agent-trust-hub — pp-whoop