sigcli-auth-proxy

Internally consistent with its stated purpose: this is an auth proxy skill, and the credential extraction, proxying, and injection features belong to that purpose. It is not confirmed malware, and the install source appears official, but the skill is high risk because it gives an AI agent broad access to sensitive browser/session credentials, supports MITM proxying, can forward secrets into arbitrary commands, and even documents SSL-verification bypasses.