qa

SUSPICIOUS. The core QA/browser-testing and bug-fix behavior is legitimate, but this skill is overgrown: it includes platform management, telemetry, artifact sync, test/CI bootstrap, CLAUDE.md routing injection, and following other skills. Those extra capabilities are disproportionate to a QA skill and increase trust and data-flow risk, though the content is not clearly malicious.