kpi-bot

SUSPICIOUS: the skill’s core actions match its stated purpose, and its network calls target official Slack and n8n endpoints, so this is not strongly indicative of malware. However, it instructs the agent to read production secrets from a local markdown file and use them to create active workflows and send live Slack messages, which is broader and riskier than necessary and enables external actions with real organizational impact.