penetration-testing

SUSPICIOUS. The skill is internally consistent with its stated purpose, but that purpose is to give an AI agent offensive security capability: scanning, exploitation, brute forcing, privilege escalation, credential harvesting, and shell access. The biggest risks are autonomous real-world actions against targets and download-execute of remote exploits/scripts. This is not confirmed malware, but it is a high-risk offensive skill.