ESLint Rule Enforcement Agent

SUSPICIOUS: the stated purpose is coherent for an ESLint skill, but the primary risk is the installation method telling the agent to fetch a transitive skill from an unverified third-party repository. There is no clear evidence of credential theft or malicious data routing in the provided text, but the trust chain is weak enough to treat this as medium/high supply-chain risk.