browser-testing-with-devtools

SUSPICIOUS. The skill’s stated browser-debugging purpose is coherent, but its installation instructions point to a package name that does not align with the publicly documented official Chrome DevTools MCP project. Because the skill’s core capability depends on executing that package via unpinned `npx @latest`, the install trust is inconsistent and materially risky even without evidence of direct credential theft or exfiltration.