go

SUSPICIOUS. The core browser-testing purpose is coherent, but the skill is over-broad because it normalizes reading .env.local or secrets-manager credentials for login and leaves tool choice open to whatever browser integration is reachable. There is no clear credential exfiltration or malicious endpoint, so this is not malware, but it carries medium security risk from secret access and untrusted-content handling during browser-driven verification.