tap-web

SUSPICIOUS: the skill’s capabilities mostly match its stated web automation purpose, but it carries medium risk because it combines a pipe-to-shell installer with broad browser control over authenticated sessions, network capture, cookies, and arbitrary web content processing. No clear malicious exfiltration endpoint is shown, so this is not confirmed malware.