security-scan

SUSPICIOUS. The skill’s purpose and capabilities are broadly aligned, and the named scanners are mostly legitimate official tools, but trust is reduced because the real behavior is hidden in local scripts that can auto-install tooling with unspecified sources and versions. No explicit credential harvesting or exfiltration appears in the visible skill text, so this looks more like a medium/high-risk security automation skill than confirmed malware.