Migrate

SUSPICIOUS: The skill’s broad file-ingestion and local write behavior largely match its migration purpose, but two trust issues stand out: undocumented execution of core local PAI tools with no verifiable provenance in the snippet, and a mandatory POST to an unexplained localhost service unrelated to content classification. This is not confirmed malware or credential theft, but the install/execution trust and data-flow integrity are weaker than expected for a benign local migration skill.