burp-suite

SUSPICIOUS: the skill’s stated purpose broadly matches its capabilities, but it adds a third-party Membrane trust layer for auth and Burp data flow, uses a mutable CLI install, and gives an AI agent access to offensive security workflows. This is not confirmed malware, but it is a high-risk security skill with intermediary credential/data handling that exceeds a simple direct Burp integration.