validator-run

The skill’s behavior is mostly coherent with a validation/remediation workflow and shows no explicit credential harvesting or exfiltration path. However, it depends on an unverifiable external validator binary (`agent-validate`) whose provenance and data flows are not disclosed; that makes the skill suspicious from an execution-trust standpoint and drives a high security-risk classification despite low evidence of malicious intent.