credential-switch

SUSPICIOUS: the stated purpose is coherent, but the skill’s core credential operations are outsourced to undocumented local scripts that receive and switch sensitive tokens. No direct exfiltration or obviously malicious endpoint is shown, yet the unverifiable credential-handling dependency makes this a high security-risk skill.