724-office-ai-agent

SUSPICIOUS: the skill’s high-risk capabilities are mostly aligned with its stated purpose, but the footprint is extremely broad. The main concerns are arbitrary code execution, self-modifying tools, transitive MCP/npm trust, autonomous outbound messaging, and a publisher/install-source mismatch; this is a high-risk agent framework rather than confirmed malware.