azure-devops

SUSPICIOUS. The skill’s capabilities mostly match its Azure DevOps management purpose and use official Microsoft endpoints, so there is no strong exfiltration signal. Risk is driven by unverifiable local script provenance, broad admin actions, and credential use; this looks like a high-impact but plausibly legitimate integration rather than confirmed malware.