nso-service-mgmt

SUSPICIOUS. The skill’s purpose and read-only capabilities are coherent, but it relies on a non-Cisco third-party MCP package from PyPI and forwards high-value NSO credentials into that code. This is not confirmed malware and there is no clear exfiltration path, but the install trust and credential-forwarding model create meaningful security risk for enterprise environments.