ESLint Rule Analyzer and Fixer

SUSPICIOUS. The stated ESLint-analysis purpose is coherent, and no credential harvesting or exfiltration is evident, but the installation model is a transitive skill install from third-party registries (`npx skills add` / `clawhub install`) whose trust relationship to `eslint/eslint` is not established. The main risk is supply-chain and inherited agent-permission exposure, not confirmed malware.