ESLint Config Enforcer

SUSPICIOUS: the stated ESLint-focused purpose is plausible, but the actual installation path relies on a third-party skill registry and a publisher/source mismatch (`agentskillexchange/skills` vs `eslint/eslint`). The main risk is transitive install trust and weak provenance, not confirmed malicious behavior.