create-agent

SUSPICIOUS: The skill is broadly aligned with its stated purpose of creating Harness agents, so it is not clearly malicious. However, it normalizes high-impact agent configs: broad Bash/MCP permissions, credential forwarding to external MCP endpoints, ngrok/public MCP exposure, and autonomous actions with real-world effects. Main concern is security risk and scope expansion, not confirmed malware.