cluster-agent-swarm

SUSPICIOUS: mostly coherent platform-orchestration behavior using official tools and official PagerDuty API, with no clear malicious exfiltration or deceptive installer. However, the skill's footprint exceeds pure coordination by autonomously running scripts, committing to git, creating PRs, and escalating incidents, so the scope is moderately risky and only partially aligned with the stated role.

SUSPICIOUS: The skill is broadly aligned with a GitOps operator role and routes data to official services, so it does not show clear malware or credential-theft behavior. However, it enables high-impact autonomous real-world actions across clusters, Git remotes, cloud secret stores, and PagerDuty, with referenced helper scripts not provided; this makes it medium/high security risk despite coherent purpose.

SUSPICIOUS: the skill is largely coherent with a Kubernetes/OpenShift security specialist role and uses official-looking service endpoints, but it is operationally powerful. Its scope includes live secret changes, cloud role assignments, SCC/RBAC modifications, PagerDuty escalation, helper-script execution, and automatic git commits, which is broader and riskier than a passive audit guide.