mobile-app-flows

SUSPICIOUS. The skill’s stated purpose mostly matches its mobile-testing capabilities, and use of adb/flutter is expected. The main issue is trust: it requires an unverifiable `agent-flutter` executable with deep visibility into an authenticated app session, plus commands that modify app/device state and generate potentially sensitive evidence artifacts. I see no confirmed malicious exfiltration, but the install/provenance gap and sensitive app access make this high-risk for an AI agent skill.