play-developer-console

SUSPICIOUS: the skill’s purpose is coherent with Play Console management, and its data flow appears aimed at official Google services, but it relies on an unverifiable local CLI that receives Google ADC-backed access and can modify production app metadata and releases. The main risk is supply-chain and credential forwarding into unverified local code, not confirmed malware.