clinical-decision-support

SUSPICIOUS: The core reporting/analysis purpose is coherent and there is no direct exfiltration, credential harvesting, or obvious malware behavior. The main risk is the mandatory use of an external third-party skill for schematics, which creates a transitive supply-chain and prompt-safety risk disproportionate to a document-generation skill handling potentially sensitive clinical data.