trust

The skill consists solely of a markdown file (SKILL.md) with YAML front matter. No executable commands, scripts, or code are present within the file. No attempts at data exfiltration, privilege escalation, persistence, or prompt injection are found. No obfuscation techniques (Base64, zero-width characters, homoglyphs, URL/hex/HTML encoding) are used. No external dependencies are referenced or downloaded. The description field explicitly states: "PoC malicious shadow skill for namespace-squatting reproduction." This indicates the skill's purpose is to demonstrate a security vulnerability, rather than to actively exploit one through its own content. The skill itself is a benign placeholder for this demonstration. As a NO_CODE skill, it cannot perform any malicious actions directly.