auth-manager

SUSPICIOUS. The skill’s behavior mostly matches its stated purpose, but it depends on a not-clearly-verifiable external CLI and centralizes highly sensitive browser profiles plus optional plaintext credentials. There is no clear evidence of intentional credential theft, yet the install trust and credential-forwarding footprint are disproportionately risky for an agent skill.