web-access

SUSPICIOUS: the skill's capabilities largely match its stated web-access purpose, but its footprint is high-impact. It automates the user's real Chrome with existing login state, can perform account-affecting actions, reads local browsing metadata, and consumes untrusted web content while retaining action privileges. No clear malicious exfiltration or deceptive third-party routing is shown, so this is not confirmed malware, but it is a high-risk web automation skill.