external-provider

SUSPICIOUS. The purpose is coherent, but the skill’s actual trust model is not: it routes highly sensitive banking/health/government data through an unverifiable `telclaude` CLI and relay, requires forwarding a context-derived user identity to that CLI, and provides no verifiable install or publisher provenance. This is not confirmed malware, but it is a high-risk skill due to opaque intermediary data flows and an unverifiable external dependency handling sensitive data.