auto-research-public

SUSPICIOUS. The skill is internally coherent for outbound sales automation and uses official-looking service endpoints, so it is not confirmed malware. However, it enables high-impact autonomous actions: scraping sites, enriching personal data, creating and activating live Smartlead campaigns, and encouraging scheduled unattended runs. The main risk is autonomy and external-action scope, not covert credential theft or mismatched data routing.