credentials

SUSPICIOUS. The skill’s behavior mostly matches its stated purpose, and data flows go to official APIs rather than third-party endpoints, so it does not look malicious. However, it is high-sensitivity by design: it reads centralized local credential files, extracts many unrelated secrets, and writes them into project .env files, which is broader and riskier than a narrowly scoped setup skill.