sql-injection-detector

SUSPICIOUS: the content is mostly generic documentation, but it grants broad Bash(npm:*) execution that is not clearly necessary for the minimal stated purpose. No direct malware, credential theft, or exfiltration is evident, yet the combination of a security-testing theme and wildcard npm execution makes the skill higher risk than its sparse description justifies.