smart-contract-auditor

SUSPICIOUS: the skill is internally coherent and does not show credential theft, exfiltration, or deceptive data flows, but it gives an AI agent explicit offensive smart-contract auditing and exploit-analysis capability. Install trust concerns are low-to-moderate and mostly limited to officially documented tooling ecosystems, not the skill itself.