validator-help

SUSPICIOUS. The core diagnostic file access is coherent and proportionate, and there is no installer or credential-harvesting behavior in the skill text. However, the skill exceeds a strict diagnosis-only footprint by auto-filing GitHub issues, and it depends on external CLIs whose provenance is not fully established from the provided evidence, especially validator-issue. Risk is driven by unverifiable command trust and autonomous public-action behavior, not by confirmed malware.