mcp-inspector

SUSPICIOUS: the skill's purpose matches MCP investigation, but its footprint lets an agent authenticate to arbitrary external servers, persist OAuth credentials, consume untrusted remote content, and execute remote tools with possible side effects. This is coherent with the stated purpose yet still medium-risk because the workflow combines external content ingestion, credential use, and action-taking without strong built-in approval constraints.