hivo-identity

SUSPICIOUS: the skill's core behavior fits identity management, but install provenance is only partially clear and it centralizes sensitive key and token operations in an external CLI. The main risk is supply-chain and credential exposure, not confirmed malicious behavior.