ln-521-test-researcher

SUSPICIOUS: The skill's stated purpose and capabilities mostly align for test-planning research, and it does not request disproportionate credentials or install executables. Main risk comes from ingesting untrusted external web content with write capability to Linear, plus unpinned fallback instruction fetches from raw GitHub. This looks more like a research workflow with prompt-injection exposure than malicious credential theft or malware.