flow-remediator-publisher

SUSPICIOUS. The skill’s capabilities broadly match its stated remediation/publishing purpose, and there is no clear malware behavior or deceptive installer. However, it handles sensitive flow data and API keys, can perform remote inserts, and allows both LLM and MCP traffic to be routed to environment-defined endpoints whose ownership cannot be verified from the skill text, creating meaningful data-flow and trust risk.