azure-devops

SUSPICIOUS. The skill’s purpose and capabilities are mostly coherent for Azure DevOps management, and the documented API targets are official Azure endpoints. However, it depends on a third-party CLI from a personal publisher and explicitly forwards Azure DevOps PAT credentials to that tool; combined with a curl|sh installer, this creates meaningful supply-chain and credential-trust risk even without evidence of overtly malicious behavior.