security-reviewer

SUSPICIOUS: the skill is internally consistent as a security-review skill, but it grants an AI agent offensive security capabilities and shell execution that can be used for penetration testing. There is no clear credential theft, stealth, or exfiltration behavior, so this is high-risk security tooling rather than malware.