mitm-security-audit

SUSPICIOUS. The skill is internally consistent and uses an official tool, so this is not malware or a deceptive credential-harvesting skill. However, it intentionally equips the agent for security testing/pentesting of HTTP traffic and exposure analysis of secrets and tokens, which makes it high-risk as an AI agent capability.