pentest-validation

SUSPICIOUS. The skill is internally consistent with its stated pentest purpose, but that purpose itself grants an AI agent high-risk offensive security capabilities: active exploitation, reverse-shell proof, credential attacks, SSRF to metadata/file targets, and PoC generation against live systems. Install/data-flow trust looks relatively clean in this fragment, but the operational capability is inherently dangerous and should be treated as high risk.