niche-evaluator

SUSPICIOUS: the core capability matches the stated niche-evaluation purpose, but the skill routes all data and credentials through a configurable NexScope proxy rather than official source APIs. There is no clear malware behavior or deceptive install chain, yet the intermediary data flow and credential forwarding make the skill a medium security risk.