Falco Runtime Security

SUSPICIOUS: the core functionality is broadly consistent with Kubernetes/Falco runtime inspection, but the install path introduces medium trust risk because it requires a third-party `npx skills add` CLI from an unrelated org and creates a transitive skill trust chain. No clear malicious data exfiltration or credential-harvesting behavior is shown from the provided content.