whatsapp-business-agent-skills

Provides a comprehensive suite of skills for managing WhatsApp business accounts, including setup, automation, and live chat operations.

Install this skill

or

76/100

Security score

The whatsapp-business-agent-skills skill was audited on May 13, 2026 and we found 16 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 8

Webhook reference - potential data exfiltration

SourceSKILL.md

8	developer/IO webhooks. Phase 3 (chat-notifyer): live WhatsApp chat operations including

medium line 32

Webhook reference - potential data exfiltration

SourceSKILL.md

32	\| 2 \| `skills/automate-notifyer` \| Templates, AI bots, broadcasts, analytics, webhooks \|

low line 146

Webhook reference - potential data exfiltration

SourceSKILL.md

146	# Webhooks

low line 147

Webhook reference - potential data exfiltration

SourceSKILL.md

147	node skills/automate-notifyer/scripts/list-webhooks.js --type dev --pretty

low line 148

Webhook reference - potential data exfiltration

SourceSKILL.md

148	node skills/automate-notifyer/scripts/create-webhook.js \

low line 284

Webhook reference - potential data exfiltration

SourceSKILL.md

284	automate-notifyer/ Phase 2 — templates, bots, broadcasts, analytics, webhooks

low line 14

External URL reference

SourceSKILL.md

14	metadata: {"author":"whatsable","version":"0.4.0","product":"Notifyer by WhatsAble","api-base":"https://api.insightssystem.com","homepage":"https://github.com/Whatsable/whatsapp-business-agent-skills"

low line 19

External URL reference

SourceSKILL.md

19	Agent skills for [Notifyer by WhatsAble](https://notifyer-systems.com) — three phases that

low line 44

External URL reference

SourceSKILL.md

44	\| `NOTIFYER_API_BASE_URL` \| yes \| API base URL — use `https://api.insightssystem.com` \|

low line 46

External URL reference

SourceSKILL.md

46	\| `NOTIFYER_CHAT_ORIGIN` \| no \| CORS Origin override for Phase 3 chat endpoints (default: `https://chat.notifyer-systems.com`) \|

low line 49

External URL reference

SourceSKILL.md

49	export NOTIFYER_API_BASE_URL="https://api.insightssystem.com"

low line 53

External URL reference

SourceSKILL.md

53	`NOTIFYER_API_BASE_URL` must start with `https://` — all three skill sets enforce this

low line 149

External URL reference

SourceSKILL.md

149	--url "https://hook.eu2.make.com/abc" --incoming --outgoing --signature

low line 248

External URL reference

SourceSKILL.md

248	- `NOTIFYER_API_BASE_URL` is validated at startup in every script. An `http://`

low line 256

External URL reference

SourceSKILL.md

256	`https://console.notifyer-systems.com/pricing-plans` for plan changes.

low line 271

External URL reference

SourceSKILL.md

271	if `NOTIFYER_API_BASE_URL` does not start with `https://`.

Scanned on May 13, 2026

View Security Dashboard

Installation guide →

GitHub Stars 2

Rate this skill

Categorysales

UpdatedMay 13, 2026

frontend design stripe remotion docx git api testing backend customer-success-manager support-agent social-media-manager marketing-analyst growth-marketer whatsapp sales support marketing

Whatsable/whatsapp-business-agent-skills