chanjing-avatar

SUSPICIOUS: the core capability fits a lip-sync API skill and the network targets appear largely same-org, but the skill embeds a hard-coded secret_key and asks the agent to use it directly. That credential handling is not proportionate for a normal public integration and creates avoidable trust and account-ownership uncertainty, even though there is no malware-like installer or third-party proxy.