cisco-cdr-mcp

SUSPICIOUS. The stated purpose matches CDR analysis, but the skill routes sensitive enterprise call-detail queries to an external remote MCP server with no documented auth model, publisher verification, or data-handling assurances. This is not confirmed malware, but the remote data flow and transitive trust in a third-party MCP service create meaningful security and privacy risk disproportionate to a typical local analytics skill.