cso

SUSPICIOUS: the core auditing capabilities are largely coherent with the stated CSO purpose, but the skill is high-risk because it gives an AI agent offensive/security-review powers, broad local inspection scope, and Bash+Write+WebSearch capabilities. Telemetry routing through a configurable endpoint further weakens data-flow integrity, though there is no clear evidence of outright malware or deliberate credential theft.