kubestellar-console

SUSPICIOUS. The skill's capabilities mostly match its stated Kubernetes operations purpose, and the kc-agent installer appears same-org and verifiable rather than a random payload. The main risk is not deceptive behavior but the unusually powerful footprint: it bridges live kubeconfig privileges to AI agents, enabling potentially impactful cluster actions and exposure to prompt-injection from untrusted cluster content. This is coherent for a Kubernetes ops skill but high consequence, so overall risk is elevated despite limited evidence of malware.