php-auth-audit

SUSPICIOUS/HIGH-RISK VULNERABLE skill. Its capabilities are internally consistent with its stated purpose, but that purpose is to give an AI agent offensive auth-audit functionality, including bypass/IDOR analysis and executable PoC generation. There is no clear credential theft, exfiltration, or malicious installer behavior, so this is not confirmed malware; the main risk is enabling security testing/exploitation workflows.