invoke-capability

SUSPICIOUS. The stated purpose matches delegated model invocation, but the skill routes user content through an opaque localhost bridge and hidden capability registry rather than directly documented provider APIs. That indirect data flow is not clearly malicious, yet it weakens data-flow transparency and trust. The instructions also encourage broad delegation and verbatim forwarding, including harsh content, which increases behavioral risk but does not by itself show credential theft or malware.