kuroco-admin-api

SUSPICIOUS: the skill's purpose largely matches its admin-management capabilities and the target Kuroco domains appear product-consistent, but it relies on a `kuroco-admin` CLI whose public provenance is not verifiably established. Because that CLI handles login-derived session cookies and authenticated admin actions, the install-trust and credential-forwarding risk is high despite otherwise coherent purpose alignment.