design-compliance

SUSPICIOUS. The skill’s core purpose is coherent, but its fully autonomous file editing, login attempts with hardcoded credentials, and exposure to untrusted browser/external content create a disproportionate operational risk. No strong evidence of malware or credential exfiltration, but it is a high-impact auto-action skill that should require tighter confirmation boundaries.