php-file-write-audit

SUSPICIOUS: the skill is internally consistent and has low supply-chain/data-exfiltration risk, but it equips an AI agent with explicit offensive security auditing capability for finding exploitable PHP arbitrary file-write/RCE paths. No credential harvesting or malicious exfiltration is evident from the provided text.