holyclaude-ai-workstation

SUSPICIOUS. The skill's general workstation purpose matches broad tooling, but its core mechanism is a third-party container image that persistently stores and receives multiple high-value credentials while also weakening sandboxing. The most serious issue is credential forwarding into an unverifiable container and intermediary web UI/account flow, which pushes this well into high security-risk territory even without proof of active exfiltration.