sales-cognism

SUSPICIOUS. The core Cognism guidance is coherent and mostly documentation-like, but the skill also tells the agent to install another skill from a not-strongly-verified third-party repo using an unpinned npx flow. That transitive trust chain is the main security issue; absent that, the skill would be low risk.