auth-manager

SUSPICIOUS. The skill's core purpose is plausible, but it reads raw local session credentials and forwards them to external endpoints whose official status is not verified in the skill. Shared cross-agent browser state is operationally coherent yet broadens impact if abused.