cloud-upload-backup

SUSPICIOUS. The core capability matches the stated purpose of cloud backup, but the data path is not cleanly aligned with official direct-to-Tencent API usage: local files are routed through a localhost gateway and exposed via a separate short-link domain. With no remote installer this is not strong malware evidence, but the intermediary proxy and link indirection make the skill medium risk and warrant scrutiny before trusting it with sensitive files.