job-search

SUSPICIOUS: The skill's job-search purpose broadly matches its capabilities, and the credential location/install model appears consistent with official Gooseworks documentation. The main concern is data-flow integrity: all requests and the bearer token are routed through Gooseworks proxy endpoints instead of direct provider APIs, and the skill reads raw credentials from a local file. This looks more like a managed gateway pattern than confirmed malware, but it introduces meaningful credential-handling and privacy risk.