qa-only

SUSPICIOUS. The core browser-based QA capability fits the stated purpose, but the actual skill footprint is much broader: it can mutate repo files, inject routing rules, commit changes, collect telemetry, and optionally sync session memory remotely. Those extra behaviors are disproportionate for a 'report-only' QA skill and reduce trust, even without clear evidence of outright malware.