pentest-ai-agents

SUSPICIOUS/HIGH-RISK skill. Its capabilities are purpose-aligned for offensive security, so this is not deceptive in scope, but it intentionally enables an AI agent to perform exploit planning, phishing, credential capture, payload generation, and post-exploitation actions with real-world consequences. The same-org installer appears legitimate yet uses unpinned curl|bash. Overall this is not confirmed malware, but it is a high-risk offensive-security skill that should be treated as dangerous.