workspace-cli-usage

SUSPICIOUS: the skill’s purpose and capabilities are broadly aligned with an official Chaitin admin CLI, and the install source appears same-org and legitimate. The main security concern is disproportionate transport insecurity: multiple products disable TLS verification by default or unconditionally, which exposes API keys and management actions to interception; combined with high-impact administrative operations, this makes the skill medium-high risk despite low evidence of malicious intent.