ssh

SUSPICIOUS. The skill's capabilities broadly match its purpose, but it gives an AI agent powerful remote-admin access, reads sensitive SSH credentials from a local file, and performs an unpinned third-party npm install at runtime. No clear malicious exfiltration is present, yet the scope and operational impact make it a high-consequence skill with medium-high security risk.