sales-getresponse

SUSPICIOUS: the main GetResponse support behavior is coherent and mostly benign, but the skill embeds an unpinned third-party transitive skill installation command unrelated to the publisher’s org. That trust-boundary jump raises medium supply-chain risk even though there is no direct credential theft or exfiltration in the provided content.