claude-settings-audit

SUSPICIOUS. The core repository-audit behavior is mostly aligned and read-only, but the skill goes beyond that purpose by recommending many third-party sentry-skills and an unverifiable Linear MCP package reference that would receive an API key. No confirmed malware or direct exfiltration is present, but the transitive trust and credential-forwarding risks make the skill medium-to-high risk overall.