pp-weather-goat
Provides weather forecasts, alerts, and activity recommendations based on current conditions using Open-Meteo and NWS data.
Install this skill
or
73/100
Security score
The pp-weather-goat skill was audited on Jun 6, 2026 and we found 7 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 150
Webhook reference - potential data exfiltration
SourceSKILL.md
| 150 | Runs indefinitely; prints JSON events to stdout when alerts change. Pipe into a logging tool or Slack webhook for alerting. |
medium line 245
Webhook reference - potential data exfiltration
SourceSKILL.md
| 245 | Route command output to a sink other than stdout. Useful when an agent needs to hand a result to a file, a webhook, or another process without plumbing. |
low line 249
Webhook reference - potential data exfiltration
SourceSKILL.md
| 249 | weather-goat-pp-cli <command> --deliver webhook:https://hooks.example/in |
medium line 252
Webhook reference - potential data exfiltration
SourceSKILL.md
| 252 | File sinks write atomically (tmp + rename). Webhook sinks POST `application/json` (or `application/x-ndjson` when `--compact` is set). Unknown schemes produce a structured refusal listing the supporte |
medium line 166
Access to hidden dotfiles in home directory
SourceSKILL.md
| 166 | - Home location persisted to `~/.config/weather-goat-pp-cli/config.toml` via `config set-location` |
medium line 264
Access to hidden dotfiles in home directory
SourceSKILL.md
| 264 | Entries append to `~/.weather-goat-pp-cli/feedback.jsonl` as JSON lines. When `WEATHER_GOAT_FEEDBACK_ENDPOINT` is set and either `--send` is passed or `WEATHER_GOAT_FEEDBACK_AUTO_SEND=true`, the entry |
low line 249
External URL reference
SourceSKILL.md
| 249 | weather-goat-pp-cli <command> --deliver webhook:https://hooks.example/in |
Scanned on Jun 6, 2026
View Security DashboardGitHub Stars 1.5K
Rate this skill
Categorysales
UpdatedJune 24, 2026
claudefrontendgitapitestingbackendcustomer-success-managercontent-marketersocial-media-managersalesmarketing
mvanhorn/printing-press-library