infoblox-ddi

SUSPICIOUS. The skill’s purpose and requested Infoblox credentials are broadly aligned, and it does not show obvious malicious routing or credential harvesting behavior. However, it delegates privileged DDI operations and API keys to a third-party MCP backend from a personal publisher and executes an environment-specified command without pinning, which creates meaningful supply-chain and credential-forwarding risk for production infrastructure workflows.